Head Topics

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank

South Africa News News

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank
South Africa Latest News,South Africa Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 53 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 24%
  • Publisher: 61%

May even have targeted other malware gangs, and infosec researchers

Infosec researchers have discovered a network of over three thousand malicious GitHub accounts used to spread malware, targeting groups including gamers, malware researchers, and even other threat actors who themselves seek to spread malware., penned by Antonis Terefos of Check Point Software, named the collection of GitHub accounts"Stargazer Ghost Network" and asserted it's operated by a threat actor the cyber security firm labelled"Stargazer Goblin.

Some of them are even starred or verified by other GitHub accounts, giving them an air of legitimacy.file containing"a phishing download link that does not even redirect to the repository's own releases. Instead, it uses three GitHub Ghost accounts with different 'responsibilities'.

Generative AI might have also been used to create legitimate-looking repositories and accounts – and perhaps to even create custom responses to real users.One such campaign was highly successful. Over a four-day period in January 2024, Check Point observed the Stargazer Ghost Network distribute Atlantida stealer – a novel malware family that steals user credentials and cryptocurrency wallets along with other personal identifiable information – and secure over 1,300 infections.

Terefos thinks some of the group's campaigns may even have targeted infosec researchers, or rival malware gangs, as the phishing link led to a cracked version of the known infostealer RisePro that had been modified to spread malware.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

South Africa Latest News, South Africa Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

How to unlock the Goblin Butcher skin in Throne and LibertyHow to unlock the Goblin Butcher skin in Throne and LibertyThe Goblin Butcher is one of the many morph skins that you can unlock in Throne and Liberty. Obtaining it, however, is no easy feat.
Read more »

Korean telco allegedly infected its P2P users with malwareKorean telco allegedly infected its P2P users with malwareKT may have had an entire team dedicated to infecting its own customers
Read more »

Temu shoppers warned app is ‘dangerous malware’ and is READING their texts, new lawsuit claims...Temu shoppers warned app is ‘dangerous malware’ and is READING their texts, new lawsuit claims...Temu shoppers warned app is ‘dangerous malware’ and is READING their texts, new lawsuit claims
Read more »

Baddies hijack Korean ERP vendor's update systems to spew malwareBaddies hijack Korean ERP vendor's update systems to spew malwareNotorious 'Andariel' crew takes a bite of HotCroissant backdoor for fresh attack
Read more »

Houthi rebels are operating their own GuardZoo spywareHouthi rebels are operating their own GuardZoo spywareFairly 'low budget', unsophisticated malware, say researchers, but it can collect the same data as Pegasus
Read more »

Japanese space agency spotted zero-day attacks while cleaning up attack on M365Japanese space agency spotted zero-day attacks while cleaning up attack on M365Multiple malware attack saw personal data acessed, but rocket science remained safe
Read more »



Render Time: 2025-08-27 15:55:16