Google’s Threat Analysis Group (TAG) has revealed that North Korean hackers are actively targeting security researchers via social media, moving to encrypted platforms once a relationship has been established. The hackers send a malicious file to the targets which collects system information. The hackers also appeared to develop a debugging tool, the GetSymbol Project, which is suspected of executing arbitrary code from an attacker-controlled domain. Google has informed the targeted researchers and is sharing findings with the wider community.
Stop blaming maintainers for open source risks
Open source leaders are pushing for permanent government financing to maintain open source projects. They argue that as government oversight is vital to the national
