GitHub comments abused to push malware via Microsoft repo URLs

April 20, 2024, 2:14 p.m. | Lawrence Abrams

BleepingComputer www.bleepingcomputer.com

A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with a Microsoft repository, making the files appear trustworthy. [...]

comments decision design files flaw github making malware microsoft repo repository security threat threat actors urls

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising 8 hours ago | www.bleepingcomputer.com

administrators ads download fake +13

Android malware Grandoreiro returns after police disruption 12 hours ago | www.bleepingcomputer.com

accounts android android banking trojan android malware +16

Banking malware Grandoreiro returns after police disruption 12 hours ago | www.bleepingcomputer.com

accounts banking banking malware banking trojan +14

The Week in Ransomware - May 17th 2024 - Mailbombing is back 1 day, 5 hours ago | www.bleepingcomputer.com

attention back breachforums data +10

Microsoft to start enforcing Azure multi-factor authentication in July 1 day, 7 hours ago | www.bleepingcomputer.com

authentication azure factor july +8

SEC: Financial orgs have 30 days to send data breach notifications 1 day, 10 hours ago | www.bleepingcomputer.com

breach breach notifications data data breach +14

US arrests suspects behind $73M ‘pig butchering’ laundering scheme 1 day, 10 hours ago | www.bleepingcomputer.com

arrests charged crime cryptocurrency +11

WebTPA data breach impacts 2.4 million insurance policyholders 1 day, 12 hours ago | www.bleepingcomputer.com

breach data data breach department +8

Five charged for cyber schemes to benefit North Korea's weapons program 2 days, 7 hours ago | www.bleepingcomputer.com

charged cyber department generated +14

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg

@ Hifield | Strasbourg, France

View on infosec-jobs.com

Lead Security Specialist

@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas

View on infosec-jobs.com

Consultant SOC / CERT H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com

all InfoSec news

GitHub comments abused to push malware via Microsoft repo URLs

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Information Security Engineers

Technology Security Analyst

Senior Cyber Security Analyst

Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg

Lead Security Specialist

Consultant SOC / CERT H/F