Web Scouter
Back to News
Security NewsHighIncidentsupply chain

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

UnknownMar 4, 2026(about 2 hours ago)

Malicious PHP packages on Packagist, disguised as Laravel utilities, deploy a cross-platform remote access trojan (RAT).

Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform remote access trojan (RAT) that's functional on Windows, macOS, and Linux systems. The names of the packages are listed below - nhattuanbl/lara-helper (37 Downloads) nhattuanbl/simple-queue (29 Downloads) nhattuanbl/lara-swagger (49 Downloads)

Related News

Critical FreeScout Vulnerability Leads to Full Server Compromise

Unknownabout 2 hours ago

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Unknownabout 3 hours ago

VMware Aria Operations Vulnerability Exploited in the Wild

Unknownabout 4 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.