A credential-stealing malware campaign is actively targeting Laravel developers through a supply chain attack on the **Laravel Lang** family of localization packages. According to [BleepingComputer](h