{"id":493,"date":"2021-12-21T15:45:47","date_gmt":"2021-12-21T15:45:47","guid":{"rendered":"http:\/\/cryptoheretostay.com\/?p=493"},"modified":"2021-12-21T15:45:48","modified_gmt":"2021-12-21T15:45:48","slug":"hackers-target-github-server-infrastructure-to-mine-cryptocurrencies","status":"publish","type":"post","link":"https:\/\/cryptoheretostay.com\/?p=493","title":{"rendered":"Hackers Target Github Server Infrastructure to Mine Cryptocurrencies"},"content":{"rendered":"<p> <script type=\"text\/javascript\">\r\namzn_assoc_placement = \"adunit0\";\r\namzn_assoc_tracking_id = \"totafreearti-20\";\r\namzn_assoc_ad_mode = \"search\";\r\namzn_assoc_ad_type = \"smart\";\r\namzn_assoc_marketplace = \"amazon\";\r\namzn_assoc_region = \"US\";\r\namzn_assoc_default_search_phrase = \"crypto\";\r\namzn_assoc_default_category = \"All\";\r\namzn_assoc_search_bar = \"false\";\r\namzn_assoc_title = \"\";\r\namzn_assoc_rows =\"1\";\r\n<\/script>\r\n<script src=\"\/\/z-na.amazon-adsystem.com\/widgets\/onejs?MarketPlace=US\"><\/script><br \/>\n<\/p>\n<p><strong>Github services is under investigation after a series of reports on attacks against one of its infrastructures by running unauthorized crypto mining apps. Cybercriminals allegedly exploited some security flaws that could have been exploited to mine cryptos illicitly.<\/strong><\/p>\n<h2 style=\"text-align: center;\">Attacks Exploit \u2018Github Actions\u2019<\/h2>\n<p>According to The Record, a Dutch security engineer, Justin Perdok, detected a cyberattacker targeting repositories belonging to Github. Attacks have been taking place since November 2020, said the report.<\/p>\n<p>Perdok pointed out that the series of attacks \u201cabused a Github feature called Github Actions,\u201d which allows users to automatically execute workflows and tasks only when a specific event happens and then pull the trigger on the repositories.<\/p>\n<p>That said, threat actors are taking advantage of the repositories where Github Actions are already enabled. The Record provided details on how the attack takes place:<\/p>\n<p>The attack involves forking a legitimate repository, adding malicious GitHub Actions to the original code, and then filing a Pull Request with the original repository in order to merge the code back into the original.<\/p>\n<p>However, the engineer clarified that the attacker just needs to fill the \u201cPull Request\u201d to deploy the malicious workflows. Once it\u2019s loaded, Github\u2019s systems will be cheated, as it will read the attacker\u2019s code and then download a crypto-mining software automatically.<\/p>\n<h2 style=\"text-align: center;\">100 Crypto Mining Apps Deployed in One Single Attack<\/h2>\n<p>But the malicious campaign seems to be powerful than thought, as Perdok told The Reported that he already detected hackers deploying almost 100 crypto-mining apps \u2013 such as Srbminer \u2013 in one single attack to mine multiple cryptocurrencies.<\/p>\n<p>Still, the attack seems not to pose a danger to the users\u2019 projects on the platform.<\/p>\n<p>Github already commented on the matter, saying that they\u2019re aware of the issue and \u201care actively investigating.\u201d However, Perdok stated Github provided him that same comment last year when he reported the flaw.<\/p>\n<p><em><strong>What do you think about this flaw in Github\u2019s infrastructure? Let us know in the comments section below.<\/strong><\/em><\/p>\n<p>Felipe Erazo <\/p>\n<p class=\"article__body__author__info__about\">\nBorn in Colombia, Felipe earned a degree in journalism at the University of Chile with the highest honor in the overall ranking and holds a Bachelor of Arts in Social Communication. He is a writer with more than nine years of experience, first in the Forex field and later in the crypto industry as an analyst\/news junkie. Among his interest topics include human rights, decentralization, financial markets, geopolitics, sports, and new technologies. An inveterate traveler, and always attracted to a good plate of food.<\/p>\n<p><i class=\"td-icon-font td-icon-linkedin\"\/><\/p>\n<p><i class=\"td-icon-font td-icon-mail-1\"\/><\/p>\n<p><i class=\"td-icon-font td-icon-twitter\"\/><\/p>\n<p class=\"images_credits\"><em>Image Credits: Shutterstock, Pixabay, Wiki Commons<\/em><\/p>\n<p><strong>Disclaimer<\/strong>: This article is for informational purposes only. It is not a direct offer or solicitation of an offer to buy or sell, or a recommendation or endorsement of any products, services, or companies. Bitcoin.com does not provide investment, tax, legal, or accounting advice. Neither the company nor the author is responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in this article.<\/p>\n<p>More Popular NewsIn Case You Missed It<\/p>\n<p><script type=\"text\/javascript\">\r\namzn_assoc_placement = \"adunit0\";\r\namzn_assoc_tracking_id = \"totafreearti-20\";\r\namzn_assoc_ad_mode = \"search\";\r\namzn_assoc_ad_type = \"smart\";\r\namzn_assoc_marketplace = \"amazon\";\r\namzn_assoc_region = \"US\";\r\namzn_assoc_default_search_phrase = \"bitcoin\";\r\namzn_assoc_default_category = \"All\";\r\namzn_assoc_search_bar = \"false\";\r\namzn_assoc_title = \"\";\r\namzn_assoc_rows =\"1\";\r\n<\/script>\r\n<script src=\"\/\/z-na.amazon-adsystem.com\/widgets\/onejs?MarketPlace=US\"><\/script><br \/>\n<br \/><a href=\"https:\/\/news.bitcoin.com\/hackers-target-github-server-infrastructure-to-mine-cryptocurrencies\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Github services is under investigation after a series of reports on attacks against one of its infrastructures by running unauthorized crypto mining apps. Cybercriminals allegedly exploited some security flaws that could have been exploited to mine cryptos illicitly. Attacks Exploit \u2018Github Actions\u2019 According to The Record, a Dutch security engineer, Justin Perdok, detected a cyberattacker [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":494,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[1],"tags":[],"class_list":["post-493","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-crypto-updates"],"_links":{"self":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/493","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=493"}],"version-history":[{"count":1,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/493\/revisions"}],"predecessor-version":[{"id":495,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/posts\/493\/revisions\/495"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=\/wp\/v2\/media\/494"}],"wp:attachment":[{"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=493"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=493"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cryptoheretostay.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=493"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}