Researchers Discover Mass Manipulation of GitHub Search Functionalities to Distribute Malware

Executive Summary Threat actors are taking advantage of GitHub’s search functionalities to deceive users looking for popular repositories into downloading malicious  counterparts that serve malware, according to a new report from Checkmarx. Attackers are utilizing techniques like automated updates and fake stars to boost search rankings and deceive users. Community Threat Assessment The use of malicious GitHub repositories to distribute…

Read More

Retail & Hospitality ISAC Announces New Associate Member Partnerships

Vienna, VA (April 8, 2024) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) today announced the cybersecurity solutions providers have recently joined the organization as new Associate Members. These companies will help to support the cybersecurity needs of the consumer-facing sector by sharing their knowledge, insights, and resources with RH-ISAC Core Members….

Read More

RH-ISAC Announces Zscaler as Title Sponsor for Cyber Intelligence Summit

Vienna, VA (April 4, 2024) – The Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC) announced that Zscaler will be the title sponsor of the RH-ISAC Cyber Intelligence Summit, which takes place in Denver, Colorado on April 9 – 11.    The RH-ISAC Cyber Intelligence Summit is an annual event tailored for strategic leaders and…

Read More

Earth Freybug Threat Actor Deploys New Unapimon Malware

Context On April 2, 2024, Trend Micro researchers reported new technical details of a “Unapimon” malware campaign attributed to Earth Freybug, which leverages “dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored.” According to Trend Micro, “UNAPIMON itself is straightforward: It is a DLL malware written in C++ and…

Read More

Red Hat Warns of Urgent XZ Tools Vulnerability, Impacts Major Linux Distros

Executive Summary On March 29, 2024, Red Hat warned users to immediately stop using systems running Fedora development and experimental versions because of a backdoor, tracked as CVE-2024-3094, found in the latest XZ Utils data compression tools and libraries. Red Hat has warned all users to discontinue any usage of Fedora 41 of Fedora Rawhide for work or personnel use and has…

Read More