ChocoPoC: The Malware Hiding in GitHub PoC Exploits Targeting Security Researchers
ChocoPoC: The Malware Hiding in GitHub PoC Exploits Targeting Security Researchers
A sophisticated supply chain attack is quietly targeting the people who find vulnerabilities first. Security researchers who clone proof-of-concept exploit repositories from GitHub have been hit with a stealthy Python-based remote access trojan called ChocoPoC — and the delivery mechanism