@GossiTheDog either that or whatever build infra they're using for the release tarballs has been compromised.
Top-level
@GossiTheDog either that or whatever build infra they're using for the release tarballs has been compromised. 2 comments
@SamantazFox @spad @GossiTheDog could be, but I’m not certain. I haven’t dug into this besides some quick reading, but something feels odd to me about the nature of the attack. It is almost like someone took benign code and used it like “gadgets”. Caveat: Just a hunch at this time. |
@spad @GossiTheDog No, because one part of the backdoor lies in the version controlled code. Only the trigger is missing from git and present in the tarballs.