Y
Hacker News
new
|
ask
|
show
|
jobs
by
Algent
201 days ago
The internal auto updater of the app directly use github as source, was this also compromised ? If malware was only on some random apkmirror upload then it should probably be fine for most users.
1 comments
hiccuphippo
200 days ago
Apparently, yes. My guess is it was the Shai-hulud npm malware leaking their Github keys.
link