A malicious Go module disguises itself as a brute force tool for SSH, but secretly steals the credentials it finds and transmits them via Telegram. A Go module discovered by the security company ...