BTC $104656.5111
ETH $2518.5307
XRP $2.1577
BNB $645.3560
SOL $145.5430
TRX $0.2750
DOGE $0.1694
stETH $2530.5278
ADA $0.5984
WBTC $104585.6092
HYPE $36.1344
wstETH $3036.5217
BCH $491.0435
SUI $2.8049
USDS $0.9998
LINK $13.0074
WBT $49.2383
LEO $9.0166
XLM $0.2488
ONDO $0.7639
AVAX $18.0043
TON $2.9576
WETH $2516.5506
weETH $2695.4526
LTC $85.0177
BSC-USD $0.9997
HBAR $0.1468
USDE $1.0006
XMR $309.0507
BTCB $104567.3460
DOT $3.5126
BGB $4.2699
CHEEL $5.1162
UNI $7.5636
PEPE $0.0000
PI $0.5401
AAVE $254.7888
DAI $1.0004
OKB $53.9993
TAO $348.5625
CBBTC $104666.6314
CRO $0.0904
APT $4.3693
ICP $5.0548
NEAR $2.1443
ETC $16.5954
JITOSOL $176.3422
BTC $104656.5111
ETH $2518.5307
XRP $2.1577
BNB $645.3560
SOL $145.5430
TRX $0.2750
DOGE $0.1694
stETH $2530.5278
ADA $0.5984
WBTC $104585.6092
HYPE $36.1344
wstETH $3036.5217
BCH $491.0435
SUI $2.8049
USDS $0.9998
LINK $13.0074
WBT $49.2383
LEO $9.0166
XLM $0.2488
ONDO $0.7639
AVAX $18.0043
TON $2.9576
WETH $2516.5506
weETH $2695.4526
LTC $85.0177
BSC-USD $0.9997
HBAR $0.1468
USDE $1.0006
XMR $309.0507
BTCB $104567.3460
DOT $3.5126
BGB $4.2699
CHEEL $5.1162
UNI $7.5636
PEPE $0.0000
PI $0.5401
AAVE $254.7888
DAI $1.0004
OKB $53.9993
TAO $348.5625
CBBTC $104666.6314
CRO $0.0904
APT $4.3693
ICP $5.0548
NEAR $2.1443
ETC $16.5954
JITOSOL $176.3422
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Global scam by Stargazer Goblin: 3,000 fake GitHub accounts spreading malware

    The attacker, Stargazer Goblin, created a network of counterfeit GitHub accounts to distribute various malware. The scheme, which has generated $100,000 in illicit profits over the past year, includes more than 3,000 accounts used to host malicious links and software.

    The fraudulent “Stargazers Ghost Network,” named by Check Point, encompasses thousands of repositories hosting malware such as Atlantida Stealer, Rhadamanthys, RisePro, Lumma Stealer, and RedLine. These accounts are also involved in various activities on the platform to give them the appearance of legitimacy.

    The network's activities were detected in August 2022, but ads for the scheme appeared on the Dark Net only in early July 2023. According to experts, the network not only spreads malware but also performs other tasks to make these fake accounts look like regular users.

    To protect against being taken off the platform, Stargazer Goblin uses different categories of accounts for different aspects of the scheme. Some accounts create phishing repository templates, others host images for these templates, and still others add malware in the form of password-protected archives disguised as cracked software and game cheats.

    As GitHub accounts are detected and blocked, Stargazer Goblin updates links to new active malware releases, ensuring minimal disruption to operations. Some accounts in the network were previously compromised, and their credentials were likely obtained by ransomware.

    The Stargazer Ghost Network shows a high level of organization and adaptability, which allows attackers to minimize losses and quickly recover from GitHub's actions. Using different accounts for different tasks makes their infrastructure resistant to detection and removal from the platform.

    This case highlights the importance of international law enforcement cooperation in the fight against cybercrime and demonstrates how even the most influential dark web markets can be stopped.

    Top 10 Emerging Cybercrime Methods in 2024
    The Evolution of Data Ransom: A New Threat to Corporate Security

    Comments 0

    Add comment