Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
KomoD
5 months ago
|
parent
|
context
|
favorite
| on:
Shai-Hulud compromised a dev machine and raided Gi...
Doesn't it publish the repos to your Github account? Just clone and look at what was stolen.
solrith
5 months ago
|
next
[–]
On the follow up Wiz blog they suggested that the exfiltration was cross-victim
https://www.wiz.io/blog/shai-hulud-2-0-aftermath-ongoing-sup...
bspammer
5 months ago
|
prev
[–]
As the sibling comment said, the worm used stolen GitHub credentials from other victims, and randomly distributed the uploads between victims.
Also everything was double base64 encoded which makes it impossible to use GitHub search.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
