Skip to content
The Nexus
SECURITYMay 22 · 11:55 UTCTHE HACKER NEWS[email protected] (The Hacker News)

Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows

A large-scale cyberattack called Megalodon has injected malicious commits into over 5,500 GitHub repositories using forged identities and automated CI/CD workflows. The campaign pushed thousands of malicious commits within a six-hour window, employing base64-encoded bash payloads designed to exfiltrate data from continuous integration environments.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this