Latest Post

RSS feed generator to create RSS feeds from URLs Tekken 8 or Tekken Remake teased at EVO 2022


The developer platform Github has been inundated with malware that has infiltrated tens of thousands of repositories.

According to security researchers, as many as 35,000 Github repositories have been cloned by malware.

The broad malware attack did not specifically target encrypted repositories (repos), but they were already affected.

Software engineer Stephen Lacy alerted the crypto community to a breach on August 3.

Clone the Github repository

Technology PortalBleeping Computer report Instead of being hacked, the repository was copied and its clone was altered to contain malware. Cloning open source code is a common practice among developers, however, attackers inject malicious code and links into legitimate projects to target unsuspecting developers.

The researchers noted that several projects from Crypto, Golang, Python, JavaScript, Bash, Docker, and Kubernetes were all affected by the attack.

While looking at the project he found from a Google search, the engineer noticed a malicious URL in the code. Scanning the Github repository for this URL returned more than 35,000 results.

More than 13,000 search results came from a repository called “redhat-operator-ecosystem,” according to Bleeping Computer. The malicious URL “exposed the user’s environment variables, but also contained a one-line backdoor,” the report added.

These environment variables can contain sensitive data such as API keys, tokens, Amazon AWS credentials, and encryption keys. The malware also allows remote attackers to execute arbitrary code on the systems of anyone installing and running the clone.

Most of the cloned repos came within the past month, the report said.

Github confirmed that the original repository was not compromised and that the clone has been cleaned or quarantined.

Last month, BeInCrypto reported that a new piece of malware written in Rust is catching on. Luca Stealer targets Windows operating systems to steal sensitive information such as encrypted wallet information. The malware is also distributed on Github.

A miserable week for cryptocurrencies

DeFi researcher Miles Deutscher noted that it has not been a good week in the crypto space. Earlier this week, the Nomad bridge was compromised with $190 million, and hours later, roughly 8,000 Solana wallets were hacked, resulting in the theft of roughly $8 million.

The market doesn’t appear to be affected, but at the time of writing, total market capitalization is up 1.7% on the day to $1.12 trillion.

Disclaimer

All information contained on our website is published in good faith and for general information purposes only. Any action that readers take with respect to the information on our site is entirely at their own risk.





Source link

Leave a Reply

Your email address will not be published.