Researchers uncovered a large Laravel malware attack after threat actors compromised popular Laravel Lang packages used across PHP development environments. The attackers manipulated trusted package versions to distribute credential-stealing malware through Composer installations. Security experts warned that the attack targeted developers, CI/CD pipelines, cloud credentials, and production infrastructure. The incident also highlights the growing threat…