Attackers Move Past Typosquatting to Realistic Package Impersonation
infosecurity-magazine.comdev-news
Most malicious open source packages have moved beyond misspelling popular project names, instead disguising themselves as plausible plugins, configs and helpers that fit naturally into a developer's … [+2606 chars]