Breach cyber

GitHub

Mar 2, 2025 1 min read
GitHub

The GitVenom campaign has aggressively targeted gamers and crypto investors, utilizing GitHub as a platform for hosting malicious projects. With a multitude of fake repositories that contained harmful code, the campaign has deceived users with seemingly legitimate automation tools and crypto bots. The impact of GitVenom included credential theft, unauthorized cryptocurrency transactions, and remote system control through backdoors. The damage extended to personal data compromise and financial losses for the affected users, while also tarnishing GitHub's reputation as a safe space for developers to share code.

Source: https://securityaffairs.com/174651/malware/gitvenom-campaign-targets-gamers-and-crypto-investors.html

"id": "git000030225",
"linkid": "github",
"type": "Breach",
"date": "2/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
Published by
Jeremy C
Jeremy C
You might also like
Breach cyber

GitHub

public 1 min read
Over 23.7 million hardcoded secrets including passwords, database connection strings, and encryption keys were exposed on GitHub in a…
Jeremy C Jeremy C
Breach cyber

Juniper Networks

public 1 min read
Mandiant researchers discovered custom backdoors deployed by China-linked espionage group UNC3886 on outdated Juniper Networks Junos OS routers. These TINYSHELL-based…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.