卡巴斯基：黑客正利用虚假GitHub项目窃取加密货币，建议用户下载前仔细检查第三方代码行为

Blockbeats

26 Feb

BlockBeats 消息，2 月 26 日，网络安全公司 Kaspersky 近日发布研究显示，黑客正在 GitHub 平台上创建数百个虚假项目，诱骗用户下载含有窃取加密货币和凭证的恶意软件。Kaspersky 将这一恶意软件活动命名为“GitVenom”。

Kaspersky 分析师 Georgy Kucherin 在 2 月 24 日的报告中指出，这些虚假项目包括管理比特币钱包的 Telegram 机器人和自动化 Instagram 账户交互工具等。黑客精心设计项目说明文件，可能使用 AI 工具生成内容，并人为增加项目“提交”次数，使项目看起来正在积极开发中。

据 Kaspersky 调查，这些恶意项目至少可追溯到两年前，无论项目如何呈现，都包含恶意组件，如通过 Telegram 上传用户保存的凭证、加密货币钱包数据和浏览历史的信息窃取工具，以及替换加密钱包地址的剪贴板劫持器。2023 年 11 月，一名用户因此损失了 5 比特币（约 44.2 万美元）。Kaspersky 建议用户在下载前仔细检查第三方代码的行为。（Cointelegraph）

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

1
2
3
4
5
6
7
8
9
10

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2514731120"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2514731120\",edition:\"fundamental\",,,undefined,":{"share":"https://ttm.financial/m/news/2514731120?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-02-26 10:35","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2514731120","market":"hk","top_or_hot":-1,"title":"卡巴斯基：黑客正利用虚假GitHub项目窃取加密货币，建议用户下载前仔细检查第三方代码行为","media":"Blockbeats","content":"<html><body><div><p>BlockBeats 消息，2 月 26 日，网络安全公司 Kaspersky 近日发布研究显示，黑客正在 GitHub 平台上创建数百个虚假项目，诱骗用户下载含有窃取加密货币和凭证的恶意软件。Kaspersky 将这一恶意软件活动命名为“GitVenom”。</p><p>Kaspersky 分析师 Georgy Kucherin 在 2 月 24 日的报告中指出，这些虚假项目包括管理比特币钱包的 Telegram 机器人和自动化 Instagram 账户交互工具等。黑客精心设计项目说明文件，可能使用 AI 工具生成内容，并人为增加项目“提交”次数，使项目看起来正在积极开发中。</p><p>据 Kaspersky 调查，这些恶意项目至少可追溯到两年前，无论项目如何呈现，都包含恶意组件，如通过 Telegram 上传用户保存的凭证、加密货币钱包数据和浏览历史的信息窃取工具，以及替换加密钱包地址的剪贴板劫持器。2023 年 11 月，一名用户因此损失了 5 比特币（约 44.2 万美元）。Kaspersky 建议用户在下载前仔细检查第三方代码的行为。（Cointelegraph）</p></div></body></html>","source":"theblockbeats_zh_live","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta content=\"text/html; charset=utf-8\" http-equiv=\"Content-Type\"/>\n<meta content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\" name=\"viewport\"/>\n<meta content=\"telephone=no,email=no,address=no\" name=\"format-detection\"/>\n<title>卡巴斯基：黑客正利用虚假GitHub项目窃取加密货币，建议用户下载前仔细检查第三方代码行为</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\n卡巴斯基：黑客正利用虚假GitHub项目窃取加密货币，建议用户下载前仔细检查第三方代码行为\n</h2>\n<h4 class=\"meta\">\n\n\n2025-02-26 10:35 北京时间   <a href=\"https://www.theblockbeats.info//flash/283229\"><strong>Blockbeats</strong></a>\n</h4>\n</header>\n<article>\n<div>\n<p>BlockBeats 消息，2 月 26 日，网络安全公司 Kaspersky 近日发布研究显示，黑客正在 GitHub 平台上创建数百个虚假项目，诱骗用户下载含有窃取加密货币和凭证的恶意软件。Kaspersky 将这一恶意软件活动命名为“GitVenom”。Kaspersky 分析师 Georgy Kucherin 在 2 月 24 日的报告中指出，这些虚假项目包括管理比特币钱包的 ...</p>\n<a href=\"https://www.theblockbeats.info//flash/283229\">Source Link</a>\n</div>\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"LU2505996681.GBP","symbol_name":"WELLINGTON MULTI-ASSET HIGH INCOME \"AM4H\" (GBPHDG) INC","start_time":0,"source_url":"https://www.theblockbeats.info//flash/283229","article_id":"2514731120","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2514731120","pubTimestamp":1740537300,"columns":[],"sourceInfo":{"source_id":"theblockbeats_zh_live","name":"blockbeat"},"weMediaInfo":null,"summary":"BlockBeats 消息，2 月 26 日，网络安全公司 Kaspersky 近日发布研究显示，黑客正在 GitHub 平台上创建数百个虚假项目，诱骗用户下载含有窃取加密货币和凭证的恶意软件。Kas","collect":0,"end_time":0,"defaultTopTitle":"theblockbeats.info","property":[],"viewcount":null,"language":"zh","relate_stocks":{"83042":"华夏比特币-R","LU2505996681.GBP":"WELLINGTON MULTI-ASSET HIGH INCOME \"AM4H\" (GBPHDG) INC","IBIT":"iShares Bitcoin Trust","MSTU":"T-Rex 2X Long MSTR Daily Target ETF","LU0157215616.USD":"FIDELITY GLOBAL FOCUS \"A\" INC","FBTC":"Fidelity Wise Origin Bitcoin Fund","09042":"华夏比特币-U","GBTC":"Grayscale Bitcoin Trust","03439":"嘉实比特币","LU0149725797.USD":"汇丰美国股市经济规模基金","GB00B4QBRK32.GBP":"FUNDSMITH EQUITY \"R\" (GBP) INC","LU2054465674.USD":"UBS (LUX) KEY SELEC SICAV DIGITAL TRANSFORMATION T \"P\" (USD) ACC","BRRR":"Valkyrie Bitcoin Fund","VBTC.AU":"Vaneck Bitcoin Etf","LU1316542783.SGD":"Janus Henderson Horizon Global Technology Leaders A2 SGD","BTCO":"Invesco Galaxy Bitcoin ETF","DEFI":"Hashdex Bitcoin ETF","LU2250418816.HKD":"BGF WORLD TECHNOLOGY \"A\" (HKD) ACC","BTCW":"WisdomTree Bitcoin Fund","09439":"嘉实比特币-U","BITO":"ProShares Bitcoin ETF","META":"Meta Platforms, Inc.","EZBC":"Franklin Bitcoin ETF","03008":"博时比特币","HODL":"VanEck Bitcoin Trust ETF","09008":"博时比特币-U","03042":"华夏比特币"},"translate_title":"Kaspersky: Hackers are using fake GitHub projects to steal cryptocurrency, advising users to double-check third-party code behavior before downloading","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"83042":0.6,"META":1,"EZBC":1,"03008":1,"GBTC":1,"HODL":1,"IBIT":1,"FBTC":1,"MSTU":1,"VBTC.AU":1,"DEFI":1,"03042":1,"03439":1,"09008":1,"09042":1,"09439":1,"BTCW":1,"BTCO":1,"BRRR":1,"BITO":1},"content_text":"BlockBeats 消息，2 月 26 日，网络安全公司 Kaspersky 近日发布研究显示，黑客正在 GitHub 平台上创建数百个虚假项目，诱骗用户下载含有窃取加密货币和凭证的恶意软件。Kaspersky 将这一恶意软件活动命名为“GitVenom”。Kaspersky 分析师 Georgy Kucherin 在 2 月 24 日的报告中指出，这些虚假项目包括管理比特币钱包的 Telegram 机器人和自动化 Instagram 账户交互工具等。黑客精心设计项目说明文件，可能使用 AI 工具生成内容，并人为增加项目“提交”次数，使项目看起来正在积极开发中。据 Kaspersky 调查，这些恶意项目至少可追溯到两年前，无论项目如何呈现，都包含恶意组件，如通过 Telegram 上传用户保存的凭证、加密货币钱包数据和浏览历史的信息窃取工具，以及替换加密钱包地址的剪贴板劫持器。2023 年 11 月，一名用户因此损失了 5 比特币（约 44.2 万美元）。Kaspersky 建议用户在下载前仔细检查第三方代码的行为。（Cointelegraph）","kind":"live","is_publish_news":false,"is_publish_highlight":false,"is_publish_live":true,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":1}}}