Threat actors are finding new ways to insert invisible code or links into open source code to evade detection of software supply chain attacks. The latest example was found by researchers at Israel-based Koi Security, who this week said they have discovered a threat actor’s campaign that has been running since August, contaminating 126 packages…
Everything is ideas, the rest is nature.
