The malicious activity, attributed to threat actor MUT-1244, has reportedly resulted in the exfiltration of over 390,000 credentials from a now-removed GitHub repository.
Researchers indicated that the victims include both security researchers and malicious actors, with compromised data comprising sensitive information such as SSH private keys and AWS access keys.
MUT-1244's campaign is characterized by the creation of trojanized repositories linked to vulnerability disclosures, exploiting trust to facilitate data theft under a guise of legitimate content.
The use of phishing tactics alongside rogue GitHub repositories outlines a sophisticated approach by attackers to infiltrate systems and extract critical information.
Collection
[
|
...
]