黑客在“GitVenom”使用200多个假的GitHub项目窃取数据和密码, Hackers used over 200 fake GitHub projects in "GitVenom" to steal data and crypto, costing victims up to $442K.

网络安全公司Kaspersky发现了一个名为“GitVenom”(GitVenom)的两年运动, 黑客在这场运动中建立了200多个假的GitHub库, Cybersecurity firm Kaspersky has uncovered a two-year-old campaign called "GitVenom," where hackers have set up over 200 fake GitHub repositories to distribute malware to unsuspecting developers. 恶意代码窃取受害人的敏感信息和加密货币,比特币部分损失高达442,000美元。 The malicious code steals sensitive information and cryptocurrency from victims, with some losing up to $442,000 in Bitcoin. 攻击者模仿合法项目以避免被发现,强调用户在使用代码之前需要核实代码的真实性。 The attackers mimic legitimate projects to avoid detection, emphasizing the need for users to verify the authenticity of code before running it.