Threat actors manipulate GitHub search results to infect developers with persistent malware. The attackers are creating malicious repositories with popular names and topics and boosting their search rankings with the help of automated updates and fake stars. They also hide a malicious payload within Visual Studio project files, leading to the execution of malware similar to Keyzetsu clippers and the targeting of cryptocurrency wallets.
The threat actors are abusing GitHub Actions to automatically update the malicious repositories and adding fake stars to manipulate users into thinking the repositories are widely popular and reliable.
Read more – Threat Actors Manipulate GitHub Search to Deliver Malware
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
