How hacker group TeamPCP exploited the open source trust model and distribution method to compromise and inject malware into over 1,000 software packages (Matt Kapko/CyberScoop)

Matt Kapko / CyberScoop:
How hacker group TeamPCP exploited the open source trust model and distribution method to compromise and inject malware into over 1,000 software packages  —  The threat group's remarkable success targeting open-source software was inevitable and fueled by the industry's decision to prioritize code shipping over security.

from Techmeme https://ift.tt/jHiJNQq