PulseAugur
EN
LIVE 15:43:26

Malware campaign disguised as Go DNS scanner infects over 200 GitHub repos

A sophisticated malware campaign, dubbed 'Operation Muck and Load,' has been discovered distributing malicious modules disguised as Go DNS scanners across more than 200 GitHub repositories. Security firm Socket traced the operation, which began in January, to a network of 222 repositories that published over 700 malicious versions of the module. The malware loader employs a multi-stage decoding process and retrieves its payload from various platforms like Pastebin, Telegram, and Google Docs, ultimately deploying tools such as Vidar infostealers and XMRig cryptominers. AI

RANK_REASON This is a report on a malware campaign and its distribution method, not a new AI model release or research.

Read on Mastodon — fosstodon.org →

AI-generated summary · Google Gemini · from 2 sources. How we write summaries →

Malware campaign disguised as Go DNS scanner infects over 200 GitHub repos

COVERAGE [2]

  1. Tom's Hardware TIER_1 English(EN) · Luke James ·

    Fake Go DNS scanner spread malware through over 200 GitHub repos — 'Operation Muck and Load' has published 700 malicious modules since January

    The module published its first version on January 24 this year and has since accumulated more than 1,200 versions.

  2. Mastodon — fosstodon.org TIER_1 English(EN) · [email protected] ·

    Fake Go DNS scanner spread malware through over 200 GitHub repos — 'Operation Muck and Load' has published 700 malicious modules since January The module publis

    Fake Go DNS scanner spread malware through over 200 GitHub repos — 'Operation Muck and Load' has published 700 malicious modules since January The module published its first version on January 24 this year and has since accumulated more than 1,200 versions. https://www. tomshardw…