The campaign uses fake developer tooling packages to steal wallets, SSH keys, GitHub tokens, cloud credentials and browser data, highlighting supply-chain risks for software teams.
30d ago
verifying reliability
No specialized terms available for this topic.