Github's Hilariously Simple Malware Exploit

What if there was a way to inject files into an otherwise completely safe project, well it turns out there was an exploit in the way that Github was handling adding files to it's CDN

==========Support The Channel========== ► Patreon: https://brodierobertson.xyz/patreon ► Paypal: https://brodierobertson.xyz/paypal ► Liberapay: https://brodierobertson.xyz/liberapay ► Amazon USA: https://brodierobertson.xyz/amazonusa

==========Resources========== Bleeping Computer Post: https://www.bleepingcomputer.com/news/security/github-comments-abused-to-push-malware-via-microsoft-repo-urls/ McAfee Post: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/redline-stealer-a-novel-approach/ OpenAnalysis Report: https://research.openanalysis.net/github/lua/2024/03/03/lua-malware.html

=========Video Platforms========== 🎥 Odysee: https://brodierobertson.xyz/odysee 🎥 Podcast: https://techovertea.xyz/youtube 🎮 Gaming: https://brodierobertson.xyz/gaming

==========Social Media========== 🎤 Discord: https://brodierobertson.xyz/discord 🐦 Twitter: https://brodierobertson.xyz/twitter 🌐 Mastodon: https://brodierobertson.xyz/mastodon 🖥️ GitHub: https://brodierobertson.xyz/github

==========Credits========== 🎨 Channel Art: Profile Picture: https://www.instagram.com/supercozman_draws/

#Github #Linux #OpenSource #FOSS #itlab

🎵 Ending music Track: Debris & Jonth - Game Time [NCS Release] Music provided by NoCopyrightSounds. Watch: https://www.youtube.com/watch?v=yDTvvOTie0w Free Download / Stream: http://ncs.io/GameTime

DISCLOSURE: Wherever possible I use referral links, which means if you click one of the links in this video or description and make a purchase I may receive a small commission or other compensation. ... https://www.youtube.com/watch?v=nsm7tiyA3TA