Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货

金色财经

26 Feb

【Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货】金色财经报道，网络安全公司Kaspersky表示，黑客们正在创建数百个虚假的GitHub项目，目的是诱骗用户下载加密和窃取凭证的恶意软件。 Kaspersky分析师乔治-库切林（Georgy Kucherin）在2月24日的一份报告中说，黑客在GitHub上创建了数百个软件源，托管包含远程访问木马（RAT）、信息窃取程序和剪贴板劫持程序的虚假项目。其中一些伪造项目包括一个管理比特币钱包的Telegram机器人和一个自动进行Instagram账户交互的工具。库切林补充说，恶意软件制作者 “不遗余力 ”地使这些项目看起来合法，包括 “精心设计 ”的信息和指令文件，这些文件 “可能是用人工智能工具生成的”。恶意项目的幕后黑手还人为夸大了 “提交”（即对项目的修改）的数量，同时添加了多个对具体修改的引用，让人以为该项目正在积极改进。

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

1
2
3
4
5
6
7
8
9
10

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2514078610"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2514078610\",edition:\"fundamental\",,,undefined,":{"share":"https://ttm.financial/m/news/2514078610?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-02-26 10:18","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2514078610","market":null,"top_or_hot":-1,"title":"Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货","media":"金色财经","content":"<html><body><p>【Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货】金色财经报道，网络安全公司Kaspersky表示，黑客们正在创建数百个虚假的GitHub项目，目的是诱骗用户下载加密和窃取凭证的恶意软件。 \nKaspersky分析师乔治-库切林（Georgy Kucherin）在2月24日的一份报告中说，黑客在GitHub上创建了数百个软件源，托管包含远程访问木马（RAT）、信息窃取程序和剪贴板劫持程序的虚假项目。 \n其中一些伪造项目包括一个管理比特币钱包的Telegram机器人和一个自动进行Instagram账户交互的工具。库切林补充说，恶意软件制作者 “不遗余力 ”地使这些项目看起来合法，包括 “精心设计 ”的信息和指令文件，这些文件 “可能是用人工智能工具生成的”。 \n恶意项目的幕后黑手还人为夸大了 “提交”（即对项目的修改）的数量，同时添加了多个对具体修改的引用，让人以为该项目正在积极改进。</p></body></html>","source":"jinse_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta content=\"text/html; charset=utf-8\" http-equiv=\"Content-Type\"/>\n<meta content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\" name=\"viewport\"/>\n<meta content=\"telephone=no,email=no,address=no\" name=\"format-detection\"/>\n<title>Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nKaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货\n</h2>\n<h4 class=\"meta\">\n\n\n2025-02-26 10:18 北京时间   <a href=\"https://cointelegraph.com/news/hackers-fake-github-projects-steal-crypto-kaspersky\"><strong>金色财经</strong></a>\n</h4>\n</header>\n<article>\n<div>\n<p>【Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货】金色财经报道，网络安全公司Kaspersky表示，黑客们正在创建数百个虚假的GitHub项目，目的是诱骗用户下载加密和窃取凭证的恶意软件。 \nKaspersky分析师乔治-库切林（Georgy Kucherin）在2月24日的一份报告中说，黑客在GitHub上创建了数百个软件源，托管包含远程访问木马（RAT）、信息窃取程序和...</p>\n<a href=\"https://cointelegraph.com/news/hackers-fake-github-projects-steal-crypto-kaspersky\">Source Link</a>\n</div>\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"LU0053666078.USD","symbol_name":"摩根大通基金-美国股票A（离岸）美元","start_time":0,"source_url":"https://cointelegraph.com/news/hackers-fake-github-projects-steal-crypto-kaspersky","article_id":"2514078610","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2514078610","pubTimestamp":1740536290,"columns":[],"sourceInfo":{"source_id":"jinse_live","name":"金色财经"},"weMediaInfo":null,"summary":"【Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货】金色财经报道，网络安全公司Kaspersky表示，黑客们正在创建数百个虚假的GitHub项目，目的是诱骗用户下载加密和窃取凭证","collect":0,"end_time":0,"defaultTopTitle":"cointelegraph.com","property":[],"viewcount":null,"language":"zh","relate_stocks":{"83042":"华夏比特币-R","161631":"人工智能","LU0053666078.USD":"摩根大通基金-美国股票A（离岸）美元","LU1670628061.USD":"M&G (LUX) NORTH AMERICAN DIVIDEND \"A\" (USD) INC","LU1435385759.SGD":"Natixis Loomis Sayles US Growth Equity RA SGD-H","SG9999001077.SGD":"United International Growth Fund SGD","LU0444973449.USD":"CT (LUX) I GLOBAL TECHNOLOGY \"DU\" (USD) ACC","LU2764263203.CNY":"BGF GLOBAL UNCONSTRAINED EQUITY \"A2\" (CNYHDG) ACC","LU1267930730.SGD":"富兰克林美国机遇基金AS Acc SGD (CPF)","03042":"华夏比特币","LU1242518857.USD":"FULLERTON LUX FUNDS - ASIA ABSOLUTE ALPHA \"I\" (USD) ACC","IE00BJJMRY28.SGD":"Janus Henderson Balanced A Inc SGD","LU2357305700.SGD":"Allianz Global Artificial Intelligence ET H2-SGD","09042":"华夏比特币-U","LU1914381329.SGD":"Allianz Best Styles Global Equity Cl ET Acc H2-SGD","BK4507":"流媒体概念","IBIT":"iShares Bitcoin Trust","03439":"嘉实比特币","SG9999004303.SGD":"Nikko AM Shenton Global Opportunities SGD","03008":"博时比特币","SG9999015945.SGD":"LionGlobal Disruptive Innovation Fund A SGD","LU0353189763.USD":"ALLSPRING  US ALL CAP GROWTH FUND \"I\" (USD) ACC","LU0320765489.SGD":"FTIF - Franklin Mutual US Value A Acc SGD","META":"Meta Platforms, Inc.","LU2087625088.SGD":"ALLSPRING  US ALL CAP GROWTH \"A\" (SGDHDG) ACC","LU1429558221.USD":"Natixis Loomis Sayles US Growth Equity RA USD","BK4077":"互动媒体与服务","LU0320765059.SGD":"FTIF - Franklin US Opportunities A Acc SGD","LU2505996681.GBP":"WELLINGTON MULTI-ASSET HIGH INCOME \"AM4H\" (GBPHDG) INC","LU1720051017.SGD":"Allianz Global Artificial Intelligence AT Acc H2-SGD","LU0203347892.USD":"SCHRODER ISF QEP GLOBAL ACTIVE VALLUE \"A\" (USD)  INC AV","09439":"嘉实比特币-U","LU1003077747.HKD":"BGF GLOBAL EQUITY INCOME \"A6\" (HKDHDG) INC","LU0323591593.USD":"SCHRODER ISF QEP GLOBAL QUALITY \"A\" (USD) ACC","IE00BFSS8Q28.SGD":"Janus Henderson Balanced A Inc SGD-H","LU1548497426.USD":"安联环球人工智能AT Acc","LU0985320562.USD":"NORDEA 1 GLOBAL STARS EQUITY \"BP\" (USD) ACC","LU2552382215.SGD":"WELLINGTON US BRAND POWER \"A\" (SGDHDG) ACC","LU1267930490.SGD":"TEMPLETON GLOBAL EQUITY INCOME \"AS\" (SGD) INC A","LU1861558580.USD":"日兴方舟颠覆性创新基金B","LU0738911758.USD":"Blackrock Global Equity Income A6 USD","MSTU":"T-Rex 2X Long MSTR Daily Target ETF","IE00BJTD4N35.SGD":"Neuberger Berman US Long Short Equity A1  Acc SGD-H","LU1732799900.SGD":"JPMorgan Investment Funds - Global Income A (irc) SGD-H","09008":"博时比特币-U","LU0957808578.USD":"THREADNEEDLE (LUX) GLOBAL TECHNOLOGY \"ZU\" (USD) ACC","LU0068578508.USD":"First Eagle Amundi International Cl AU-C USD"},"translate_title":"Kaspersky: Hackers are creating hundreds of fake GitHub projects to steal crypto cargo","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"83042":0.6,"161631":1,"03042":1,"META":1,"MSTU":1,"IBIT":1,"03008":1,"09439":1,"09042":1,"09008":1,"03439":1},"content_text":"【Kaspersky：黑客在创建数百个虚假的GitHub项目以窃取加密货】金色财经报道，网络安全公司Kaspersky表示，黑客们正在创建数百个虚假的GitHub项目，目的是诱骗用户下载加密和窃取凭证的恶意软件。 \nKaspersky分析师乔治-库切林（Georgy Kucherin）在2月24日的一份报告中说，黑客在GitHub上创建了数百个软件源，托管包含远程访问木马（RAT）、信息窃取程序和剪贴板劫持程序的虚假项目。 \n其中一些伪造项目包括一个管理比特币钱包的Telegram机器人和一个自动进行Instagram账户交互的工具。库切林补充说，恶意软件制作者 “不遗余力 ”地使这些项目看起来合法，包括 “精心设计 ”的信息和指令文件，这些文件 “可能是用人工智能工具生成的”。 \n恶意项目的幕后黑手还人为夸大了 “提交”（即对项目的修改）的数量，同时添加了多个对具体修改的引用，让人以为该项目正在积极改进。","kind":"live","is_publish_news":false,"is_publish_highlight":false,"is_publish_live":true,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":1}}}