JakeFeb 5, 2025
Golang Weekly

Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence

https://socket.dev/blog/malicious-package-exploits-go-module-proxy-caching-for-persistence

Discussions: https://discu.eu/q/https://socket.dev/blog/malicious-package-exploits-go-module-proxy-caching-for-persistence

#golang #programming

Go Supply Chain Attack: Malicious Package Exploits Go Module...

Socket researchers uncovered a backdoored typosquat of BoltDB in the Go ecosystem, exploiting Go Module Proxy caching to persist undetected for years.

Socket
Feb 5, 2025 at 7:24pmGolang Weekly