Malicious Go Binary Delivered via Steganography in PyPI (blog.phylum.io)
Ongoing Malware Laced Developer Job Interviews (blog.phylum.io)
Researchers Uncover npm Package Delivering RAT Via Microsoft Executable (blog.phylum.io)
Malicious Nuget Packages Found Delivering SeroXen RAT (blog.phylum.io)
Cloud Provider Credentials Targeted in New PyPI Malware Campaign (blog.phylum.io)
Rust Malware Staged on Crates.io (blog.phylum.io)
Phylum routinely identifies malware and other software supply chain attacks targeting high-value, critical assets: an organization’s software developers.