ZDNet

GitHub warns Java developers of new malware poisoning NetBeans projects

GitHub has issued a security alert on Thursday warning about a new malware strain that's been spreading on its site via boobytrapped Java projects. The malware, which GitHub's security team has named ...
Bleeping Computer

New Octopus Scanner malware spreads via GitHub supply chain attack

Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems ...
Threat Post

Octopus Scanner Sinks Tentacles into GitHub Repositories

At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain. The Octopus Scanner malware, which targets the Apache ...
Dark Reading

GitHub Supply Chain Attack Uses Octopus Scanner Malware

On March 9, the GitHub Security Incident Response Team (SIRT) received a message from security researcher JJ, who had discovered a set of GitHub repositories actively serving malware. A deep-dive ...