ikidd@lemmy.world to

Linux@lemmy.mlEnglish · 9 months ago

FOSS project attacks on Github, malware injected in forks ransomware Linux machines

117

FOSS project attacks on Github, malware injected in forks ransomware Linux machines

ikidd@lemmy.world to

Linux@lemmy.mlEnglish · 9 months ago

Rogue One: A Malware Story

While adding support for jqfmt to my markdown code block formatter (mdsf, mdsf#700), I came across something weird.

Apparently there’s a bunch of projects getting hit with this, fairly obscure ones though. Project gets forked, suddenly get a pile of stars more than the original, and then there’s a curl-bash pipe inserted into it that runs some ransomeware that encrypts ~/Documents.

About a dozen other projects linked in here from another developer (excuse the Reddit link): https://old.reddit.com/r/golang/comments/1jbzuot/someone_copied_our_github_project_made_it_look/

Chat

The Bard in GreenA
link
fedilink
English
arrow-up
14·
9 months ago
Jokes on them, I don’t keep shit in ~/Documents, all my goodies are on a network share mounted at ~/Netstore
- harsh3466@lemmy.ml
  link
  fedilink
  arrow-up
  10·
  9 months ago
  Hahaha. Was about to comment nearly the same thing. My NFS share has a different mount. ~/Documents is an empty directory
- DaveX64@lemmy.ca
  link
  fedilink
  arrow-up
  2·
  9 months ago
  I was going to say that too, ha!

Linux@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !linux@lemmy.ml

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

158 users / day
763 users / week
2.77K users / month
7.89K users / 6 months
2 local subscribers
60.4K subscribers
6.44K Posts
78.7K Comments
Modlog