Uncover the GitVenom campaign targeting GitHub users with malicious repositories designed to steal credentials and cryptocurrency.

A malware campaign named GitVenom is using hundreds of GitHub repositories to deceive users into downloading info-stealers, remote access Trojans (RATs), and clipboard hijackers to steal cryptocurrencies and credentials. This campaign targets users by exploiting the trust placed in GitHub repositories, which are often perceived as reliable sources for software and scripts. The impacts include the theft of cryptocurrencies and sensitive data, as well as the compromise of victims' systems.

Kaspersky researchers discovered GitVenom campaign distributing stealers and open-source backdoors via fake GitHub projects.

Kaspersky Global Research & Analysis Team (GReAT) discovered hundreds of open source repositories with multistaged malware targeting gamers and cryptoinvestors within a new campaign that was dubbed by Kaspersky as GitVenom. The infected projects include an automation instrument for interacting with Instagram accounts, a Telegram bot that enables the remote management of Bitcoin wallets and a crack tool to play the Valorant game. All of this alleged project functionality was fake, and cybercriminals behind the campaign stole personal and banking data and hijacked cryptowallet addresses from the clipboard. As a result of the malicious activity cybercriminals were able to steal 5 Bitcoins (around $485,000 at the time of investigation). Kaspersky detected the use of the infected repositories worldwide, with most cases in Brazil, Turkiye, and Russia.

Enjoyed this article? Share it with your friends! Kaspersky, a cybersecurity firm, reported that hackers are using fake GitHub repositories to steal cryptocurrency and login credentials. Kaspersky's investigation also revealed evidence that some of these repositories have been active for at least two years. The scam, known as "GitVenom", appears to have a higher concentration of victims in Russia, Brazil, and Turkey…

Effortlessly remove GitVenom malware with our step-by-step guide for a secure and clean system.

GitVenom malware on GitHub stole $456K in Bitcoin via fake projects, hijacking wallets and banking data.

GitVenom malware on GitHub stole $456K in Bitcoin via fake projects, hijacking wallets and banking data.

Key takeaways Een nieuwe campagne met de naam GitVenom door Kaspersky’s Global Research & Analysis Team (GReAT) heeft honderden open source repositories op GitHub blootgelegd die malware in meerdere fasen bevatten. Deze repositories waren gericht op…

Principaux renseignements Une nouvelle campagne baptisée GitVenom par l’équipe de recherche et d’analyse mondiale (GReAT) de Kaspersky a mis au jour des centaines de dépôts de logiciels libres sur GitHub hébergeant des logiciels malveillants à plusieurs…