Security · 1h ago
ChocoPoc malware spreads via fake PoC exploits on GitHub
Attackers uploaded trojanized proof-of-concept exploits to GitHub, delivering a Python RAT called ChocoPoc. The malware executes commands and steals sensitive data from infected systems. Researchers warn developers to verify PoC code before running it.
Meridian48 take
This highlights the risk of trusting unverified security research code, even on reputable platforms like GitHub.
Read the full reporting
ChocoPoc malware delivered via trojanized exploits on GitHub →
Bleeping Computer
malwaregithub