> TritonInfoSec News
Home / May 26, 2026 / Story
0
#7 SecurityWeek general May 25, 2026 at 10:41 UTC

Laravel-Lang Packages Poisoned for Malware Delivery

By Ionut Arghire

AI Summary

Malicious tags were injected into Laravel-Lang packages within a 15-minute window, introducing backdoors designed to exfiltrate CI/CD secrets from build environments. The speed and precision of the compromise suggests a targeted supply chain attack against the PHP/Laravel ecosystem. Teams using Laravel-Lang should audit pinned versions and rotate any CI secrets that may have been exposed during the affected window.

Read full article → https://www.securityweek.com/laravel-lang-packages…

Relevance score: 77.0/100

# More from May 26

  1. 1
    Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks Krebs on Security
  2. 2
    Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks The Hacker News
  3. 3
    Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack SecurityWeek
  4. 4
    TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO The Hacker News
  5. 5
    Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms The Hacker News
  6. 6
    FBI warns of Kali365 phishing service targeting Microsoft 365 accounts BleepingComputer
  7. 8
    Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects SecurityWeek
  8. 9
    DocketWise Data Breach Impacts 143,000 SecurityWeek
  9. 10
    266,000 Affected by Data Breach at Radiology Associates of Richmond SecurityWeek