Microsoft has identified a campaign that uses job-themed repositories to lure software developers into downloading multi-stage backdoors. Attackers exploit trust in shared code, using fake technical assessment projects with repeatable naming conventions to blend into routine workflows and execute malicious code with minimal on-disk traces.
Edward Kiledjian
@ekiledjian