Greedy Cybercriminals Host Malware On Github Avast Threat Labs Researchers found two new techniques on github. one uses github gists, and the other uses git commit messages to send commands. malware creators sometimes upload their malware to dropbox, google drive, onedrive, and discord to hide it and avoid being detected. Threat actors are leveraging public github repositories to host malicious payloads and distribute them via amadey as part of a campaign observed in april 2025.
Greedy Cybercriminals Host Malware On Github Avast Threat Labs Cybersecurity researchers have uncovered a sophisticated campaign leveraging github’s trusted release infrastructure to distribute the lumma stealer malware. Security researchers have uncovered a sophisticated malware as a service (maas) operation which exploits public github repositories to compromise its targets. This operation exploited fake github accounts as open directories for hosting malicious payloads, tools, and amadey plugins, aiming to evade web filtering mechanisms and simplify distribution. Recent cybersecurity intelligence has uncovered a significant trend: threat actors are now exploiting public github repositories to host and disseminate the amadey malware and various data stealing tools.
Github Faces Widespread Malware Attacks Affecting Projects Including This operation exploited fake github accounts as open directories for hosting malicious payloads, tools, and amadey plugins, aiming to evade web filtering mechanisms and simplify distribution. Recent cybersecurity intelligence has uncovered a significant trend: threat actors are now exploiting public github repositories to host and disseminate the amadey malware and various data stealing tools. Published this week, the research details how cybercriminals are leveraging github’s reputation to deliver a malicious dll payload, hidden within a fake vpn installer, to unsuspecting users. Cybercriminals are exploiting github to spread credential stealing malware through fake repositories, cybersecurity firm kaspersky has warned. Threat actors are leveraging public github repositories to host malicious payloads and distribute them via amadey as part of a campaign observed in april 2025. Cybersecurity researchers have uncovered a concerning trend where threat actors are leveraging legitimate public github repositories to host and distribute malicious payloads, bypassing traditional web filtering and exploiting the platform’s trusted nature.
How Threat Actors Can Use Github Repositories To Deploy Malware Published this week, the research details how cybercriminals are leveraging github’s reputation to deliver a malicious dll payload, hidden within a fake vpn installer, to unsuspecting users. Cybercriminals are exploiting github to spread credential stealing malware through fake repositories, cybersecurity firm kaspersky has warned. Threat actors are leveraging public github repositories to host malicious payloads and distribute them via amadey as part of a campaign observed in april 2025. Cybersecurity researchers have uncovered a concerning trend where threat actors are leveraging legitimate public github repositories to host and distribute malicious payloads, bypassing traditional web filtering and exploiting the platform’s trusted nature.
Comments are closed.