Chinese malware is flooding GitHub pages - HiddenGh0st, Winos and kkRAT hit devs via SEO poisoning

Chinese users looking to download popular browsers and communications software are being targeted by different malware ...
Wired

A Hacker ‘Ghost’ Network Is Quietly Spreading Malware on GitHub

A secretive network of around 3,000 “ghost” accounts on GitHub has quietly been manipulating pages on the code-hosting website to promote malware and phishing links, according to new research seen by ...
PC Gamer

Fake Minecraft mods that steal all your personal data including crypto wallets are being distributed via GitHub accounts

Word to the Minecraft massif. Be very careful about the mods and tools (definitely no cheats...) you choose to install. They may come with an unwanted payload of malware that will steal your Minecraft ...

GitHub supply chain attack sees thousands of tokens and secrets stolen in GhostAction campaign

Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack ...

Salesloft says Drift customer data thefts linked to March GitHub account hack

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...
The Hacker News

GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed ...
Infosecurity Magazine

Salesloft: GitHub Account Breach Was Ground Zero in Drift Campaign

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...
Bleeping Computer

Hacker targets other hackers and gamers with backdoored GitHub code

A hacker targets other hackers, gamers, and researchers with exploits, bots, and game cheats in source code hosted on GitHub that contain hidden backdoors to give the threat actor remote access to ...