Cybercriminals are exploiting GitHub to spread credential-stealing malware through fake repositories, cybersecurity firm Kaspersky has warned. The campaign, dubbed “GitVenom,” involves attackers creating seemingly legitimate projects filled with malicious code that infects users’ devices upon download.

The attack starts with seemingly legitimate GitHub projects — like making Telegram bots for managing bitcoin wallets or tools for computer games.

Hackers are creating hundreds of fake GitHub projects aiming to dupe users into downloading crypto and credential-stealing malware, says cybersecurity firm Kaspersky. Kaspersky analyst Georgy Kucherin said in a Feb.

The GitVenom campaign targets developers—and once downloaded, can be used to deceive victims into transferring crypto.

Cybersecurity firm Kaspersky has issued a warning about a widespread malware campaign targeting users on GitHub.

Kaspersky Global Research & Analysis Team (GReAT) discovered hundreds of open source repositories with multistaged malware targeting gamers.

Kaspersky warns hackers use fake GitHub projects to steal crypto, login credentials, and system access from users

A malware campaign in GitHub repositories is targeting bank data and Bitcoin wallets. The malicious code is often only executed at build time.

Kaspersky uncovers GitVenom, a malware campaign using fake GitHub repositories to steal crypto and user credentials.

Cybercriminals are using a sneaky new method to trick developers into downloading dangerous malware. A recent campaign called GitVenom is spreading harmful software through fake GitHub repositories. These attackers create fake open-source projects that look real but secretly contain hidden threats.