SSH Keys Stolen by Stream of Malicious PyPI and npm Packages
SSH Keys Stolen by Stream of Malicious PyPI and npm Packages
28 September 2023
The attackers utilized typosquatting and code modifications to trick developers into installing malicious packages and continuously refined their techniques to evade detection.