Unveiling Supply Chain Threats: Charming Kitten and Lazarus Group's Tactics

A recent GitHub supply chain attack on March 17, 2025, compromised a GitHub Actions tool, affecting 23,000 organizations. This incident highlights the vulnerability of software development tools, with attackers altering code to leak secrets.