GitGot: GitHub leveraged by cybercriminals to store stolen data | allinfosecnews.com

Jan. 23, 2024, 1 p.m. | lucija.valentic@reversinglabs.com (Lucija Valentić)

ReversingLabs Blog blog.reversinglabs.com

In January, ReversingLabs researchers discovered two malicious packages on the npm open source package manager that leveraged the GitHub platform to store stolen Base64 encrypted SSH keys lifted from developer systems that installed the malicious npm packages.

Multiple versions of the malicious npm packages, warbeast2000 and kodiak2k were identified and have since been removed from npm. However, the campaign is just the latest example of cybercriminals and malicious actors using open source package managers and related infrastructure to support malicious …

base64 cybercriminals data developer encrypted github january keys malicious malicious npm malicious packages manager npm open source package package manager packages platform researchers reversinglabs ssh ssh keys stolen store systems threat research

More from blog.reversinglabs.com / ReversingLabs Blog

Listen up: 10 cybersecurity podcasts you can learn from 3 days, 13 hours ago | blog.reversinglabs.com

can career cybersecurity expert +6

Python downloader highlights noise problem in open source threat detection 4 days, 13 hours ago | blog.reversinglabs.com

components detection downloader downloads +24

9 best practices for leveraging threat intelligence in your security operations 5 days, 13 hours ago | blog.reversinglabs.com

adversaries best practices can cti +17

NSA's zero-trust maturity for AppSec: What you need to know 1 week, 3 days ago | blog.reversinglabs.com

agency application appsec appsec & supply chain security +17

Security operations by the numbers: 30 cybersecurity stats that matter 1 week, 4 days ago | blog.reversinglabs.com

cybersecurity defenses enterprise enterprise it +17

The state of AppSec: Are we getting better — or falling behind? 1 week, 5 days ago | blog.reversinglabs.com

application application security appsec appsec & supply chain security +7

Why shareable SBOMs are essential for software security 2 weeks, 4 days ago | blog.reversinglabs.com

appsec & supply chain security bills building collecting +21

Will CISA's Secure by Design pledge be a catalyst for better software security? 2 weeks, 5 days ago | blog.reversinglabs.com

adoption agency akamai amazon +17

When it comes to threat modeling, not all threats are created equal 3 weeks, 3 days ago | blog.reversinglabs.com

appsec & supply chain security can career fix +4

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States

View on infosec-jobs.com