Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

Summary

A coordinated malware campaign dubbed 'Megalodon' compromised over 5,500 GitHub repositories in just six hours, injecting malicious commits designed to steal developer credentials, API keys, and other secrets. The attack exploited compromised accounts or access tokens to push code across a wide range of projects, representing a significant supply-chain threat to the software development ecosystem.

Indicators of Compromise

• malware — Megalodon

Entities