Techly NewsGet the app

Get the latest tech news

GitHub abused to distribute payloads on behalf of malware-as-a-service


The repository offered the MaaS a distribution channel not blocked in many networks.

Researchers from Cisco’s Talos security team have uncovered a malware-as-a-service operator that used public GitHub accounts as a channel for distributing an assortment of malicious software to targets. Researchers from security firm Palo Alto Networks and Ukraine’s major state cyber agency SSSCIP had already documented the use of Emmenhtal in a separate campaign that embedded the loader into malicious emails to distribute malware to Ukrainian entities. Talos said the primary function of Amadey is to collect system information from infected devices and download a set of secondary payloads that are customized to their individual characteristics, based on the specific purpose in different campaigns.

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of malware

malware

Photo of service

service

Photo of GitHub

GitHub

Related news:

News photo

ChatGPT Will Soon Shop Online, Make PowerPoints on Your Behalf

News photo

Hackers Are Finding New Ways to Hide Malware in DNS Records

News photo

Hackers exploit a blind spot by hiding malware inside DNS records

« House Passes Historic Crypto Bill Regulating Stablecoins
ChatGPT’s new AI agent can browse the web and create PowerPoint slideshows »