Cybersecurity experts say hackers are using GitHub to create bogus repositories meant to fool users into installing dangerous software. These misleading initiatives include malware capable of pilfering credentials, bitcoin, and browser data.
Dubbed “GitVenom,” an ongoing malware campaign operating for at least two years has now been discovered by cybersecurity company Kaspersky. Attackers establish hundreds of repositories pretending to be reputable utilities, such as applications for automating online activity or Telegram bots for Bitcoin wallet management.
Hackers deliberately inflate commit histories to replicate active development and present professional-looking documentation, usually produced using artificial intelligence, to seem genuine. These strategies try to persuade naive consumers that the projects are reliable.
Once downloaded, though, these bogus programs run covertly destructive malware. Usually comprising an information stealer extracting saved credentials, bitcoin wallet data, and browsing history, the malware Furthermore, the malware replaces copycat crypto wallet addresses with ones under the attacker’s control, thereby routing money to these accounts.
One such case in November had a victim losing five Bitcoin, worth around $442,000 at the time, when their money was transferred to a wallet run under hacker control.
According to Kaspersky’s research, GitVenom keeps changing and uses several coding methods to evade security program detection. Though its influence is global, the campaign has mostly affected consumers in Turkey, Brazil, and Russia.
Before downloading any code, developers and crypto users are encouraged to completely confirm the authenticity of GitHub projects in order to guard against such hazards. Among the warning signals are discrepancies in commit history, too-polished documentation, and repositories devoid of actual community involvement.
Preventing financial losses and data breaches depends critically on remaining watchful and applying rigorous security policies even if thieves are constantly improving their strategies.
