Cloned then compromised, bad repos are forked faster than they can be removed
A malware distribution campaign that began last May with a handful of malicious software packages uploaded to the Python Package Index (PyPI) has spread to GitHub and expanded to reach at least 100,000 compromised repositories. READ THE FULL NEWS >>
GitHub struggles to keep up with automated malicious forks