Crypto Scam Alert: Hackers Use GitHub To Steal Funds—Kaspersky

Bitcoinist
Updated
Mitrade
coverImg
Source: DepositPhotos

Cybercriminals have initiated a sophisticated attack that targets GitHub users. They are utilizing fake repositories to disseminate malware that steals personal data and cryptocurrency. Kaspersky, a security firm, has identified more than 200 repositories that deceive unsuspecting developers and merchants by posing as legitimate open-source projects.


Deceptive Repositories Inundate GitHub


The perpetrators of this scheme have designed their repositories to look credible, often depicting them as solutions for automating Instagram interactions or managing Bitcoin wallets. These bogus projects aim to convince consumers of their authenticity by employing professional descriptions, regular updates, and meticulously produced documentation.


Victims who fall to the trap install malware from these fraudulent repositories. Infected files contain remote access trojans (RATs), clipboard hijackers, and data-extracting software, allowing attackers to retrieve browser histories, cryptocurrency wallet details, and login credentials.


Malware Sends Stolen Data Via Telegram


When installed, the malware sends away the captured data to hackers through Telegram. Attackers use this secured messaging app to obtain sensitive information while remaining undetectable. In some cases, the malware alters clipboard information, which causes cryptocurrency transactions to be redirected to wallets controlled by the hackers.


The magnitude of the operation is a cause for concern. According to Kaspersky, one user lost 5 Bitcoins, valued at approximately $442,000, as a result of the hack. Kaspersky has monitored numerous incidents from different countries: Russia, Brazil, and Turkey are the most severely affected.


The GitVenom


In a February 24 report, Kaspersky analyst Georgy Kucherin stated that hackers had created hundreds of repositories on GitHub containing fictitious projects that contain remote access trojans (RATs), info-stealers, and clipboard hijackers as part of the malware operation, which the company named “GitVenom.”

Kucherin added the malware creators made a huge effort to make the projects look legitimate by including well-designed instruction files that were possibly generated with the use of artificial intelligence programs.


Extreme Caution A Must


Kaspersky urged users to “be extra cautious about downloading code from GitHub.” If you wish to reduce the possibility of becoming a victim of such attacks, maximum security measure is essential. This may involve scanning downloaded files for viruses, avoiding repositories with low activity or recent creation dates, and reviewing and verifying the history of repository owners.


As new cyber threats arise, users need to be alert in protecting their valuables. Modern social engineering and phishing techniques are sophisticated enough to outwit even the most experienced of programmers. To reduce the chance of potential threats in the future, it is ideal to remain cognizant and maintain rigorous security protocols.

* The content presented above, whether from a third party or not, is considered as general advice only.  This article should not be construed as containing investment advice, investment recommendations, an offer of or solicitation for any transactions in financial instruments.

goTop
quote
Do you find this article useful?
Related Articles
placeholder
Bitcoin Profit Taking Explodes: 12x More Gains Than Losses Hitting ExchangesOn-chain data shows the ratio between the Bitcoin profit and loss being sent to exchanges is approaching euphoric bull market levels.
Author  Bitcoinist
13 hours ago
On-chain data shows the ratio between the Bitcoin profit and loss being sent to exchanges is approaching euphoric bull market levels.
placeholder
ADA and AVAX share bearish outlooks after the SEC delays ETFsCardano (ADA) and Avalanche (AVAX) are down 5% to 8% in the last 24 hours, respectively, at press time on Friday, in the aftermath of the US Securities and Exchange Commission (SEC) delaying the decission over the Cardano and Avalanche Exchange Traded Funds (ETFs) filings on Wednesday.
Author  FXStreet
14 hours ago
Cardano (ADA) and Avalanche (AVAX) are down 5% to 8% in the last 24 hours, respectively, at press time on Friday, in the aftermath of the US Securities and Exchange Commission (SEC) delaying the decission over the Cardano and Avalanche Exchange Traded Funds (ETFs) filings on Wednesday.
placeholder
Bitcoin Selling Pressure Weak As Binance Inflows Stay Subdued – Can BTC Sustain Its Rally?Bitcoin (BTC) continues to trade close to its new all-time high (ATH) of $111,980, set earlier this week.
Author  NewsBTC
17 hours ago
Bitcoin (BTC) continues to trade close to its new all-time high (ATH) of $111,980, set earlier this week.
placeholder
Top 3 Price Prediction: BTC slips below key support, ETH and XRP show bearish cuesBitcoin (BTC) trades below $106,000 on Friday after slipping below a crucial support level, increasing the likelihood of a deeper correction.
Author  FXStreet
19 hours ago
Bitcoin (BTC) trades below $106,000 on Friday after slipping below a crucial support level, increasing the likelihood of a deeper correction.
placeholder
XRP Price Slips Again — Is a Deeper Correction Underway?XRP price started a fresh decline below the $2.280 zone. The price is now correcting losses and might aim for a move above the $2.250 resistance. XRP price started a fresh decline below the $2.280
Author  NewsBTC
20 hours ago
XRP price started a fresh decline below the $2.280 zone. The price is now correcting losses and might aim for a move above the $2.250 resistance. XRP price started a fresh decline below the $2.280
Real-time Quote