A hacker group is poisoning open source code at an unprecedented scale

A hacker group has been conducting a massive software supply chain attack by poisoning open source code on GitHub. The group, known as TeamPC, has compromised numerous projects to inject malicious code, posing a significant threat to the software ecosystem and potentially affecting thousands of downstream users and applications.