Fake LDAPNightmare exploit on GitHub spreads infostealer malwareA misleading PoC exploit on GitHub is distributing infostealer malware by exploiting user trust and interest in vulnerability assessments.
GitHub struggles to keep up with automated malicious forksMalware campaign started in PyPI spread to GitHub infecting 100,000 repositories.Attackers upload altered files to GitHub, cloning legitimate repos to spread malware loaders.