TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
The Hacker News avatar

TGINSIGHT POST

Post #8503

@thehackernews

The Hacker News

Views10,100Post view count
PostedFeb 2702/27/2026, 03:35 PM
Post content

Post content

⚠️ A malicious Go package injected code into ssh/terminal/terminal.go to capture passwords. It posed as Go’s crypto library, stole secrets, loosened firewall rules, and deployed Rekoobe — a Linux trojan linked to APT31 as recently as 2023. 🔗 Read → https://thehackernews.com/2026/02/malicious-go-crypto-module-steals.html