Tech & Gadgets

This new phishing strategy uses GitHub comments to spread malware

  • Github repositories are becoming infected with malware
  • Trusted repositories can bypass secure web gateways
  • Github comments are also used to hide malicious files

In a new phishing campaign detected by Cofense Intelligence, threat actors took a novel approach by leveraging trusted GitHub repositories to spread malware. The campaign aims to leverage the inherent trust that many organizations place in GitHub as a developer platform.

Rather than creating malicious repositories, attackers opted to embed malware in legitimate repositories affiliated with tax organizations such as UsTaxes, HMRC and Inland Revenue.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button