News
Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub
Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub Jan 23, 2024NewsroomSoftware Security / Supply Chain Two malicious packages discovered on the npm package registry have been found to leverage GitHub to store Base64-encrypted SSH keys stolen from developer systems on which they were installed. The modules named Read more…