GitHub Supply Chain Attack Via New Malware

Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems and deploy a Remote Administration Tool (RAT). The malware dubbed Octopus Scanner by researchers at the GitHub Security Lab compromises developers’ computers by infecting their NetBeans repositories after planting malicious payloads within JAR binaries, project files and dependencies, later spreading to downstream development systems. “Infecting build artifacts is a means to infect more hosts since the infected project will most likely get built by other systems and the build artifacts will probably be loaded and executed on other systems as well,” the researchers explain.

Source: Bleepingcomputer

Source: https://www.itsecurityguru.org/2020/05/29/github-supply-chain-attack-via-new-malware/?utm_source=rss&utm_medium=rss&utm_campaign=github-supply-chain-attack-via-new-malware

Generative Data Intelligence

GitHub supply chain attack via new malware

Legacy carmakers face brand loyalty challenges as EV competitors emerge

Pentagon extends Midlands footprint with BYD dealerships

Latest Intelligence

What is Bagging in Machine Learning?

2024 NBA Mock Draft June 26

Fundamentals of Data Collaboration – DATAVERSITY

Streamlining Your Data Needs for Generative AI – DATAVERSITY

Cardano Unfazed By Failed DDoS Attack Targeting Staked ADA

Bybit Surpasses Coinbase’s Crypto Trading Market Share