Security News Laravel Lang packages hijacked to deploy credential-stealing malware BleepingComputer Daniel Bender 23 May 2026 Share A supply chain attack targeting the Laravel Lang localization packages has exposed developers to a sophisticated credential-stealing malware campaign after attackers abused GitHub version tags to distribute malicious code through Composer packages.
