GitHub is under automated attack by millions of cloned repositories filled with malicious code (www.pcgamer.com)
from yogthos@lemmy.ml to technology@lemmy.ml on 01 Mar 2024 14:12
https://lemmy.ml/post/12617441

#technology

threaded - newest

Cheradenine@sh.itjust.works on 01 Mar 2024 15:38 next collapse

This is bad, but only seems to be related to forks from main (correct me if I am wrong). So if you go to source, you should be OK.

adding its own malicious code which is concealed under seven layers of obfuscation

Behind seven vpns?

Heratiki@lemmy.ml on 01 Mar 2024 15:58 next collapse

I’m thinking the code is obfuscated by random calls to various functions so that the code block isn’t just one section you can easily see but sprinkled throughout instead.

Cheradenine@sh.itjust.works on 01 Mar 2024 16:02 collapse

Yes that seems like the case, it just struck me as funny

i_am_not_a_robot@discuss.tchncs.de on 02 Mar 2024 00:46 collapse

You’re not OK. Not all forks are labeled as forks.

Cheradenine@sh.itjust.works on 02 Mar 2024 04:33 collapse

Thank you for the clarification

where_am_i@sh.itjust.works on 01 Mar 2024 16:07 collapse

That will teach them a lesson about training models on random repositories.