Cloned then compromised, bad repos are forked faster than they can be removed
A malware distribution campaign that began last May with a handful of malicious software packages uploaded to the Python Package Index (PyPI) has spread to GitHub and expanded to reach at least 100,000 compromised repositories.…
This article has been indexed from The Register – Security