Using Legitimate GitHub URLs for Malware
Schneier on Security
APRIL 22, 2024
The attacker is exploiting a property of GitHub: comments to a particular repo can contain files, and those files will be associated with the project in the URL. These URLs would also appear to belong to the company’s repositories, making them far more trustworthy.
Let's personalize your content