Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access

Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections

North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS

Watch Out For These 8 Cloud Security Shifts in 2025

Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage Risks

Cybersecurity researchers have called attention to a software supply chain attack targeting the Go ecosystem that involves a malicious package capable of granting the adversary remote access to infected systems.
The package, named github.com/boltdb-go/bolt, is a typosquat of the legitimate BoltDB database module (github.com/boltdb/bolt), per Socket. The malicious version (1.3.1) was published to

Headline

Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access

The Hacker News: Latest News