Cyber criminals are using the comment section for popular repositories hosted on GitHub and GitLab to trick developers into downloading malware onto their systems.
The latest in a string of novel techniques used by threat actors to distribute malware via Git repositories, hackers once again rely on the reputation of trustworthy sources like Microsoft and Nvidia to sideload their malicious code onto developer systems.
The process involves abusing the file upload logic in GitHub’s comments, using the system to automatically generate download links using the name of the owner of the repository, regardless of the commentor’s identity or content of the file itself.
Sergei Frankfoff, co-founder of automated malware analysis company Open Analysis, first highlighted the issue in a livestream on 27 March 2024, in which he claimed threat actors were already actively exploiting the flaw.
On 17 April 2024, security company McAfee released a report on the Redline Stealer trojan that leveraged a LUA malware loader to deliver the malicious payload.
The report noted that the LUA loader was distributed through a seemingly legitimate Microsoft GitHub repository, concluding that GitHub was being abused to host the malware at Microsoft’s official account under the vcpkg repository.
But upon further inspection by a separate publication, the source code for vcpkg repository – containing Microsoft’s C++ Library Manager for Windows, Linux, and MacOS – included no reference to the files.
Instead, hackers found a way of using the comment section underneath the repository to upload files which GitHub then links to the official Microsoft repository.
When users leave a comment on GitHub, they can choose to attach a file which is then uploaded to GitHub’s content delivery network (CDN) and linked to the project the comment was made on.
GitHub automatically generates a download link for the file, and the unique URL uses the name of the legitimate repository the comment was attached to, lending the link more credibility.
Because GitHub automatically generates the download link as soon as the file is attached to the comment, the hackers trying to evade detection can delete the comment as soon as the file is uploaded and their comment will disappear but the file will continue to be hosted at that repository.
As a result, mitigation steps are limited to unilaterally disabling comments on your repository, which for smaller maintainers might risk damaging their reputation or trustworthiness.
Frankoff noted in March that it appeared GitHub was trying to mitigate the issue by restricting the file types users can upload via the comment function, but warned ZIP files, often used to conceal malware, were still allowed.
Furthermore, GitLab also has a similar mechanism that automatically generates download URLs for files attached to comments, indicating hackers could apply this approach to similar developer platforms.
GitHub repositories have become a happy hunting ground for cyber criminals
This technique follows a string of similar cases where threat actors use platforms like GitHub to target developers with malware.
One such instance involved hackers abusing GitHub’s search function to trick developers into downloading malicious code. The attackers used the names of popular GitHub repositories to disguise malware.
The threat actors were observed using a number of GitHub features, such as its automation tool GitHub Action, to artificially push their fake repositories up the search results and promote their malware.
Hackers have also been recorded taking advantage of AI hallucinations by popular chatbots to distribute their malware via GitHub.
RELATED WHITEPAPER
Researchers at Lasso Security found ChatGPT frequently recommends code libraries that don’t actually exist.
A follow-up to the initial investigation warned that threat actors had picked up on this tendency and were uploading malware using the names of the frequently hallucinated packages in the hopes a developer might uncritically recommend the package by an AI agent.
The investigation revealed a dummy package created using the name of a fake Hugging Face package frequently hallucinated by ChatGPT received over 30,000 authentic downloads in only three months, illustrating how effective this technique could be.
Max Gannon, cyber intelligence team manager at email security specialist Cofense, said the lack of available mitigation measures for the flaw and the obfuscation baked into the approach makes the issue difficult to resolve.
“This is a very clever tactic for threat actors to take advantage of, especially because GitHub has really provided no way for companies to mitigate the threat. The only thing that can be done is for individuals to exercise caution when clicking any link, regardless of where it appears to go or who it appears to be from,” he said.
“For example, if you stopped and thought about it, a .zip file containing cheat software is not likely to be directly hosted on a Microsoft repository."
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Organizations urged to act fast after GitHub Action supply chain attackNews More than 20,000 organizations may be at risk following a supply chain attack affecting tj-actions/changed-files GitHub Action.
-
Nearly a million devices were infected in a huge GitHub malvertising campaignNews Microsoft has alerted users to a malvertising campaign leveraging GitHub to infect nearly 1 million devices around the world.
-
'GitVenom' campaign uses dodgy GitHub repositories to spread malwareNews Security researchers have issued an alert over a campaign using GitHub repositories to distribute malware, with users lured in by fake projects.
-
Malicious GitHub repositories target users with malwareNews Criminals are exploiting GitHub's reputation to install Lumma Stealer disguised as game hacks and cracked software
-
A leaked GitHub access token could have led to a catastrophic supply chain attackNews The GitHub access token with administrator level privileges could have been used to great effect by threat actors
-
Hackers are abusing GitHub's search function to spread malware
News Hackers are using the names of popular GitHub repositories to trick users into downloading malicious code, new research reveals.
-
Hackers take advantage of AI hallucinations to sneak malicious software packages onto enterprise repositoriesNews New research reveals a novel attack path where threat actors could leverage nonexistent open-source packages hallucinated by models to inject malware into enterprise repositories
-
Hackers are spoofing themselves as GitHub's Dependabot to steal user passwordsNews GitHub Dependabot was crudely spoofed in hundreds of successful attacks on open source projects
