Cybersecurity analysts are warning of a persistent harmful initiative aimed at the Go ecosystem featuring typosquatted packages that are intended to install loader malware on Linux and Apple macOS platforms.
“The threat entity has released a minimum of seven packages mimicking popular Go libraries, among which is one (github[.]com/shallowmulti/hypert) seemingly aimed at developers in the financial sector.”