공격자는 다른 사용자의 망할 놈의-저장소를 해킹 및 데이터 복구를 위해 돈이 필요

망할 놈의-저장소의 특별한 문제에 ZDNet의 기자 뾰족한 관심을, 포함하여 GitHub의, 의 Bitbucket 및 GitLab 사용자.

ast week unknown attacker or a group of attackers started hacking other people’s repository, 모든 초기 코드와 주석을 삭제, 나중에 데이터 복구에 대한 인수가 필요.

위에 제시 매수 요청 메시지, also says that prior to deleting information attacker thoughtfully saved it on his server, and victim has 10 days on payment transition. Otherwise attacker threatens to delete data forever.

To recover your lost code and avoid leaking it: Send us 0.1 비트 코인 (BTC) to our Bitcoin address ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by Email at admin@gitsbackup.com with your Git login and a Proof of Payment. If you are unsure if we have your data, contact us and we will send you a proof. Your code is downloaded and backed up on our servers. If we don’t receive your payment in the next 10 일, we will make your code public or use them otherwise, , — says blackmailer’s message.

Currently on Bitcoin-wallet that is mentioned in the message was not received any transactions, though journalists inform about 392 victims of the blackmail campaign on GitHub only while Atlassian company experts say about at least 1000 involved users.

에 따르면 잘못된 패킷 company specialists, the most likeable is that this attack was planned, and hackers scanned network, searching for /.git/config and files with Git configuration, and later used found accounts for penetration repositories. In the interview to ZDNet, GitLab specialists confirmed that this expert’s theory is trustworth, and in the case that investigated GitLlab, issue was hidden in compromised accounts that were stored in the open search.

It is worth noting that StackExchanges users consider that attackers does not delete information from their repositories, but just changes Git commits headlines. If this is true, data can be restored without buyout payments. On StackExchange have already prepared instruction for this case.

게다가, security specialists actively call victims not to pay to the blackmailer and instead to turn in GitHub, GitLab and Bitbucket support that can allegedly help them.

githab
Security specialists actively call victims not to pay to the blackmailer

출처: https://www.zdnet.com

트로이 킬러 소개

메모리 스틱에 트로이 킬러 휴대용 운반. 당신은 당신이 어디를 가든 당신의 PC가 어떤 사이버 위협에 저항 도울 수 있는지 확인하십시오.

또한 확인

Heroku가 클라우드 플랫폼에 MageCart

연구진은 여러 MageCart 웹 스키머에 Heroku가 클라우드 플랫폼 발견

Malwarebytes 연구원은 Heroku가 클라우드 플랫폼에서 여러 MageCart 웹 스키머를 찾는 것에 대해보고 …

안드로이드 스파이웨어 CallerSpy

안드로이드 채팅 응용 프로그램으로 CallerSpy 스파이웨어 마스크

트렌드 마이크로의 전문가들은 악성 코드 CallerSpy 발견, 안드로이드 채팅 응용 프로그램으로하는 마스크와, …

회신을 남겨주