Security researchers discovered obfuscated JavaScript hidden inside a Packagist development version of the legitimate Laravel package roberts/leads. The malicious code was appended to tailwind.js in the dev branch, drewroberts/feature/test-case. It was exposed as an installable dev version on Packagist. Socket’s AI scanner flagged the version after detecting runtime reconstruction of Node.js internals and immediate execution […]
The post North Korean Chollima Group Abuses Packagist Package to Infect PHP Developers appeared first on Cyber Security News.