Google’s mirror proxy for Go programming language developers promoted a backdoored package for over three years. The service, Go Module Mirror, fastens and verifies downloads’ compatibility. However, since November 2021, a maliciously named file has been hosted on it, potentially misleading developers to download it instead of the intended file. The service had cached the malicious file for three years, leading to its continued availability despite changes to the original source.
SmokeLoader malware aimed at multiple Ukrainian industries, using bug in file archiver
Russian hackers have exploited a vulnerability in popular file archiver 7-Zip to infiltrate Ukrainian governmental and private organisations with SmokeLoader malware, says Tokyo-based cybersecurity firm
