Supply Chain Attack Targets Laravel-Lang Packages with Credential Stealer

A supply chain attack targeting Laravel-Lang packages was discovered, where malicious code was injected to steal credentials from developers. The compromised packages exfiltrated environment variables and sensitive data, highlighting risks in the PHP ecosystem's dependency chain.