Hackers are impersonating cybersecurity researchers on Twitter and GitHub to publish fake proof-of-concept exploits for zero-day vulnerabilities that infect Windows and Linux with malware.

Someone created a bunch of github profiles impersonating real researchers alongside fake Twitter accounts. Pretty fascinating, really.

  • meli nasa@feddit.deEnglish
    1·
    1 year ago

    huh, this is weird. one would think people would use separate machines / vms to test zero day exploits, not their main machines.

    • execveat@infosec.pubOPEnglish
      4·
      1 year ago

      They’re not even that stealthy. The code is bullshit, gitignore folder is super suspicious and malware is just a binary within the zip file. Clearly meant for script kiddies.