Security · 1h ago
Fake Go DNS scanner on GitHub infected 200+ repos with malware
A malicious Go DNS scanner module, part of 'Operation Muck and Load,' has published over 700 malicious versions since January. Researchers traced the campaign to 222 GitHub repositories. The module accumulated more than 1,200 versions, posing as a legitimate tool while spreading malware.
Meridian48 take
The scale and persistence of this campaign highlight how open-source ecosystems remain vulnerable to supply-chain attacks, especially when malicious actors mimic popular tools.
Read the full reporting
Fake Go DNS scanner spread malware through over 200 GitHub repos — 'Operation Muck and Load' has published 700 malicious modules since January →
Tom's Hardware
supply-chain-attackgithub-malware