GitHub Under Attack: Cybercriminal Targets Millions of GitHub Users Through Ghost Accounts Distributing Malware, Earns USD 1,00,000, Says Report
Cyber attacker called "Stargazer Goblin" reportedly run Stargazer Ghost Network using a DaaS model to spread malware families affecting several users. The individual run a network of 3,000 ghost accounts affecting millions of users and earning USD 1,00,000 in the process.
Mumbai, July 28: GitHub, a developer-focused platform that allows them to create, store, manage and share their codes with others, is under attack by a network of ghost accounts. According to a discovery, these accounts pose a more significant threat to millions of GitHub users. As per a report, Check Point Research, an organisation providing cyber threat intelligence, discovered a sophisticated "Stargazers Ghost Network" on GitHub.
According to the a report by Times of India, the Stargazers Ghost Network has been found by researchers to be distributing malware viruses and malicious links, potentially affecting millions of users across the platform. The report revealed that the network was run by an individual called 'Stargazer Goblin', who targeted gamers, social media enthusiasts, and cryptocurrency holders . This resulted in stolen credentials, ransomware infection, and compromised crypto wallets, causing significant distress to the affected users. Marques Brownlee Aka MKBHD Finally Reveals His FBI Declassified Story on Escobar Folding Phone; Check What Did He Say (Watch Video).
Stargazer Globlin used the Stargazers Ghost Network, which operated on a DaaS (Distribution as a Service) model, to distribute an entire malware family to the systems of the targets. The report highlighted that this malware included Lumma Stealer, RedLine, Atlantida Stealer, and Rhadamanthys. The network was used to compromise several accounts, resulting in a five-figure financial gain by Stargazer Goblin.
According to researchers, the individual behind the Stargazers Ghost Network earned an estimated USD 1,00,000 since August 2022. Operating over 3,000 GitHub ghost accounts, Stargazer Goblin has affected several users by distributing the malware families. The network's ability to make repositories appear legitimate, achieved through 'starring, forking, and subscribing', is a striking aspect of the operation. Ananya, Robot, Serves Food Ordered by Customers in Restaurant in West Bengal To Help Kitchen Staff.
While many developers use GitHub to share codes and information, malware attacks reportedly questioned the security of such open-source platforms; the cybercriminals used the DaaS model to affect a wide range of users on other popular platforms, such as Instagram, YouTube, Twitter, Twitch, and Discord.
(The above story first appeared on LatestLY on Jul 28, 2024 10:36 AM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website latestly.com).