Developer-targeting campaign using malicious Next.js repositories
Developer-targeting campaign using malicious Next.js repositories
www.microsoft.com
Developer-targeting campaign using malicious Next.js repositories | Microsoft Security Blog
A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard build workflows. The activity demonstrates how staged command-and-control c...
cross-posted from: https://lemmy.bestiver.se/post/954231