Security News > 2024 > September > Clever 'GitHub Scanner' campaign abusing repos to push malware

Clever 'GitHub Scanner' campaign abusing repos to push malware
2024-09-19 11:07

A clever threat campaign is abusing GitHub repositories to distribute malware targeting users who frequent an open source project repository or are subscribed to email notifications from it. A malicious GitHub user opens a new "issue" on an open source repository falsely claiming that the project contains a "security vulnerability." [...]


News URL

https://www.bleepingcomputer.com/news/security/clever-github-scanner-campaign-abusing-repos-to-push-malware/