Dossier
credential-stealing framework
Coverage of credential-stealing framework in the Nexus archive.
- Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Cybersecurity researchers identified a supply chain attack targeting Laravel-Lang PHP packages, which were compromised to deliver a cross-platform credential-stealing framework. The affected packages include laravel-lang/lang, laravel-lang/http-statuses, laravel-lang/attributes, and laravel-lang/actions.