Security & Privacy
How TeamPCP's Self-Propagating Worm Turned Open Source Into a Backdoor Factory
TeamPCP just demonstrated something terrifying: a worm that doesn't need human help to spread through open source ecosystems. It compromised npm tokens, poisoned packages, and used blockchain to stay untouchable.