To try and take over other people’s ci/cd pipelines and inject malware into otherwise legitimate application binaries.

LastPass hack happened due to a developer logging I. On their home PV which had an outdated and vulnerable version of Plex installed. Swap outdated for “maliciously forked” and now attackers have legit code that can run for months before they use what they’ve injected to take over.

Why would somebody want to steal my login credentials‽‽