July 29, 2024 at 03:42AM Stargazer Goblin operates a network of inauthentic GitHub accounts, distributing malware and earning $100,000 in illicit profits. The “Ghost” accounts engage in various activities to appear legitimate, making them resistant to takedowns. The scheme propagates malware families such as Atlantida Stealer and involves social engineering attacks, targeting GitHub repositories and … Read more
July 24, 2024 at 04:38PM A threat actor named “Stargazer Goblin” is using a new tactic to distribute malware by leveraging GitHub. They use a large network of inauthentic accounts to make malicious repositories appear legitimate. The operation involves starring, forking, and subscribing to the repositories to make them seem credible. The group also distributes … Read more
January 11, 2024 at 09:21AM Mandiant’s social media account on platform X was hacked, resulting in a cryptocurrency theft campaign generating over $900,000 for cybercriminals. The attack involved promoting a fake website. The company’s investigation revealed a compromised password attack, leading to changes in their security process. Mandiant detailed the ClinkSink campaign and identified numerous … Read more