Four popular Composer packages maintained by the Laravel-Lang organization were compromised with malware after attackers altered their Git tags, potentially impacting all applications that used these packages. The malicious code, designed to harvest sensitive credentials, was published across over 700 historical versions, prompting urgent security measures for affected users and organizations.
The Laravel-Lang supply chain attack serves as a critical reminder to bolster your organization's defenses against similar threats. Ensure your systems check for the integrity of Git tags and use tools that alert you to unexpected changes in dependency repositories. Additionally, immediately rotate all credentials, particularly cloud keys and developer credentials, if your systems have interacted with the compromised packages.