"Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments"

Hackers have been using unpublished GitHub and GitLab comments to generate phishing links appearing to be from legitimate Open Source Software (OSS) projects. The trick enables anyone to impersonate any repository without the owner knowing. According to McAfee, hackers have already used this method to spread the Redline Stealer Trojan by using links associated with Microsoft's GitHub-hosted repositories. There have been additional cases involving the same loader used in that campaign. The problem affects both GitHub, a platform with over 100 million registered users, and its main competitor, GitLab, which has over 30 million users. This article continues to discuss findings regarding hackers using unpublished GitHub and GitLab comments to generate phishing links.

Dark Reading reports "Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments"

Submitted by grigby1