TeamPCP’s ‘Supply Chain Flywheel’: How a Single Rogue Extension Hit GitHub
Hacker group TeamPCP has compromised thousands of GitHub repositories using a self-perpetuating cycle of poisoned open-source tools.
Hacker group TeamPCP has compromised thousands of GitHub repositories using a self-perpetuating cycle of poisoned open-source tools.