Hackers Use Single-Letter Go Module Typosquat to Deploy DNS-Based Backdoor

A seemingly innocent typo in a Go module name has been quietly serving a live backdoor for nearly three years. Security researchers uncovered a malicious package called github.com/shopsprint/decimal that impersonates the popular github.com/shopspring/decimal library, differing by just a single letter in its name. The package went live in 2017 but was weaponized in August 2023, when attackers slipped in […] The post Hackers Use Single-Letter Go Module Typosquat to Deploy DNS-Based Backdoor appeared first on Cyber Security News.