Most teams don't have a methodology for hunting malicious open source packages, but #GitHub can help!
We partnered with Paul and Jenn from
@opensourcemalware.bsky.social to publish a free, step-by-step guide for #CTI analysts using real DPRK campaign artifacts.
š feedly.com/ti-essential...
