A recent campaign has targeted GitHub accounts        , as well as npm and PyPI, with the goal of stealing passwords from developers. These attacks highlight the ongoing efforts to compromise open-source ecosystems and the software supply chain  .
In addition to the GitHub campaign, another campaign targeted npm and PyPI  . Counterfeit packages were used to gather machine information and transmit it to a remote server     . A typosquat campaign on npm used packages masquerading as popular frameworks to collect machine information   . These activities violate the npm Acceptable Use Policy and put a strain on those responsible for maintaining clean ecosystems     .
These incidents highlight the ongoing efforts by threat actors to compromise open-source ecosystems and exploit supply chains . They also demonstrate the increasing complexity and obfuscation techniques used in these attacks. It is crucial to address the growing threat of generative AI in cybersecurity and take steps to mitigate these risks in the future.