Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access

Updated on February 4, 2025

Cybersecurity researchers have called attention to a software supply chain attack targeting the Go ecosystem that involves a malicious package capable of granting the adversary remote access to infected systems.
The package, named github.com/boltdb-go/bolt, is a typosquat of the legitimate BoltDB database module (github.com/boltdb/bolt), per Socket. The malicious version (1.3.1) was published to…

Read the rest of the story at Read More

Source: The Hacker News

December 12, 2024 Uncategorized

Europol Dismantles 27 DDoS Attack Platfo...

March 4, 2025 Uncategorized

Google’s March 2025 Android Securi...

September 20, 2024 Uncategorized

Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access

Related posts

Europol Dismantles 27 DDoS Attack Platfo...

Google’s March 2025 Android Securi...

Iranian APT UNC1860 Linked to MOIS Facil...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines