Hackers Abusing GitHub to Evade Detection and Control Compromised Hosts
Hackers Abusing GitHub to Evade Detection and Control Compromised Hosts
19 December 2023
Threat actors are increasingly making use of GitHub for malicious purposes through novel methods, including abusing secret Gists and issuing malicious commands via git commit messages.
"Malware authors occasionally place their samples in services like Dropbox, Google Drive, OneDrive, and Discord to host second stage malware and sidestep detection tools," ReversingLabs researcher Karlo Zanki