Zeitpunkt Nutzer Delta Tröts TNR Titel Version maxTL So 28.07.2024 00:00:10 7.217 0 608.998 84,4 NerdCulture 4.2.10 1.000 Sa 27.07.2024 00:00:04 7.217 0 608.530 84,3 NerdCulture 4.2.10 1.000 Fr 26.07.2024 00:00:06 7.217 +3 608.036 84,3 NerdCulture 4.2.10 1.000 Do 25.07.2024 00:00:12 7.214 +1 607.496 84,2 NerdCulture 4.2.10 1.000 Mi 24.07.2024 00:00:05 7.213 -1 606.862 84,1 NerdCulture 4.2.10 1.000 Di 23.07.2024 00:00:03 7.214 0 606.564 84,1 NerdCulture 4.2.10 1.000 Mo 22.07.2024 00:01:25 7.214 0 606.028 84,0 NerdCulture 4.2.10 1.000 So 21.07.2024 00:01:09 7.214 +1 605.552 83,9 NerdCulture 4.2.10 1.000 Sa 20.07.2024 00:00:00 7.213 +1 605.193 83,9 NerdCulture 4.2.10 1.000 Fr 19.07.2024 13:58:59 7.212 0 604.919 83,9 NerdCulture 4.2.10 1.000
Olly 👾 (@Olly42) · 01/2024 · Tröts: 249 · Folger: 28
So 28.07.2024 14:27
3,000 Fake GitHub Accounts used to spread Malware in Stargazers Ghost Scheme. :github: 👻
Threat actors known as 'Stargazer Goblin' have created a malware Distribution-as-a-Service (DaaS) from over 3,000 fake accounts on GitHub that push information-stealing malware.
https://research.checkpoint.com/2024/stargazers-ghost-network/
#github #3000 #fake #ghost #accounts #spread #malware #it #programming #security #privacy #socialmedia #wordpress #tech #technology #engineering #media #news
The malware delivery service is called Stargazers Ghost Network and it utilizes GitHub repositories along with compromised WordPress sites to distribute password-protected archives that contain malware. In most cases, the malware are infostealers, such as RedLine, Lumma Stealer, Rhadamanthys, RisePro and Atlantida Stealer.
[ImageSource: Check Point] GitHub repository pushing password-protected archive containing malware. Check Point Research discovered the operation, which says it is the first time that such an organized and large-scale scheme has been documented running on GitHub.
[ImageSource: Check Point] Ghost GitHub accounts participating in the scheme. Stargazer Goblin established a system where they create hundreds of repositories using three thousand fake 'ghost' accounts. These accounts star, fork, and subscribe to malicious repositories to increase their apparent legitimacy and make them more likely to appear on GitHub's trending section.
[Öffentlich] Antw.: 0 Wtrl.: 6 Fav.: 0 · via Metatext