all InfoSec news
Fake security researchers push malware files on GitHub
Malware Analysis, News and Indicators - Latest topics malware.news
Researchers from VulnCheck have observed a campaign using real security researchers as bait for malware. The campaign goes to some lengths to appear genuine, using fake profiles, downloads, websites, and bogus GitHub profiles, to paint a convincing picture of security professionals offering up exploit code for popular programs.
The campaign included a network of fictitious Twitter accounts posing as employees of a firm called “High Sierra Cyber Security”. The Record notes that several photographs of real security researchers working at …
bogus campaign code downloads exploit exploit code fake fake profiles files github malware popular professionals profiles researchers security security professionals security researchers websites