News

The Register on MSN7d
More than a hundred backdoored malware repos traced to single GitHub user
Someone went to great lengths to prey on the next generation of cybercrooks Sophos thinks a single person or group called ...
Hacker targets other hackers and gamers with backdoored GitHub code
A hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub ...
SecurityWeek8d
Backdoored Open Source Malware Repositories Target Novice Cybercriminals
A threat actor has been creating backdoored open source malware repositories to target novice cybercriminals and game cheaters.
TechJuice4d
Hackers and Gamers Fall Victim to Backdoored GitHub Repositories
Security experts discovered over 140 infected GitHub repositories. Out of these, 133 contained working backdoor scripts.
Bleeping Computer2y
35,000 code repos not hacked—but clones flood GitHub to serve malware
Thousands of GitHub repositories were copied with their clones ... Rather, the thousands of backdoored projects are copies (forks or clones) of legitimate projects purportedly made by threat ...
TechCrunch3mon
Thousands of exposed GitHub repositories, now private, can still be accessed through Copilot
Thousands of once-public GitHub repositories from some of the world’s biggest companies are affected, including Microsoft’s, according to new findings from Lasso, an Israeli cybersecurity ...
Ars Technica4mon
Go Module Mirror served backdoor to devs for 3+ years
The malicious package first appeared on GitHub. The file there was eventually reverted back to the legitimate version, but by then, the Go Module Mirror had cached the backdoored one and stored it ...
Geeky Gadgets10mon
Why your private GitHub repos may not be as secure as you think
Private and deleted GitHub repositories are not as secure as users might assume. Data from deleted forks, deleted repositories, and private repositories can still be accessed, often indefinitely.