bleepingcomputer.com.html - webdump_tests - Testfiles for webdump
(HTM) git clone git://git.codemadness.org/webdump_tests
(DIR) Log
(DIR) Files
(DIR) Refs
(DIR) README
---
bleepingcomputer.com.html (73407B)
---
1 <!doctype html>
2 <html lang="en-us">
3 <head>
4 <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
5 <meta http-equiv="X-UA-Compatible" content="IE=edge" />
6 <meta name="viewport" content="width=device-width, initial-scale=1" />
7
8 <link href="https://fonts.googleapis.com/css?family=Roboto:400,100,300,500,700,900&display=swap" rel="stylesheet preload" type="text/css" as="style">
9
10 <link href="https://www.bleepstatic.com/js/redesign/bootstrap/css/bootstrap.min.css" rel="stylesheet preload" type="text/css" media="all" as="style">
11 <link href="https://www.bleepstatic.com/css/redesign/main.css?v=05.19.23.2" rel="stylesheet preload" type="text/css" media="all" as="style">
12 <link href="https://www.bleepstatic.com/css/redesign/home.css" rel="stylesheet preload" type="text/css" media="screen" as="style"><link href="https://www.bleepstatic.com/css/redesign/news.css" rel="stylesheet preload" type="text/css" as="style" media="screen,print">
13 <link rel="preload" href="https://www.bleepstatic.com/js/redesign/jquery-3.5.1.min.js" as="script">
14 <link rel="preload" href="https://www.bleepstatic.com/js/redesign/jquery-migrate-1.4.1.min.js" as="script">
15
16 <meta name="Owner" content="Lawrence Abrams/BleepingComputer.com" />
17 <link rel="shortcut icon" href="https://www.bleepstatic.com/favicon/bleeping.ico" />
18 <meta property="og:site_name" content="BleepingComputer" />
19 <meta property="og:locale" content="en_us" />
20 <meta name="application-name" content="BleepingComputer" />
21 <link rel="dns-prefetch" href="//fonts.googleapis.com" />
22 <link rel="dns-prefetch" href="//www.bleepstatic.com" />
23 <link rel="dns-prefetch" href="//www.google-analytics.com" />
24 <link rel="dns-prefetch" href="//www.googletagmanager.com" />
25 <link rel="dns-prefetch" href="//securepubads.g.doubleclick.net" />
26 <title>GitHub repos bombarded by info-stealing commits masked as Dependabot</title>
27 <meta name="Keywords" content="computers, windows, linux, mac, support, tech support, spyware, malware, virus, security, Breach, Coding, Dependabot, GitHub, Information Stealer, Password Stealing Trojan,virus removal, malware removal, computer help, technical support" />
28 <meta name="description" content="Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers." />
29 <meta name="abstract" content="Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers." />
30 <link rel="canonical" href="https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/" />
31 <link rel="prev" href="https://www.bleepingcomputer.com/offer/deals/get-a-refurbished-lenovo-tab-4-android-tablet-for-under-80/" />
32 <link rel="next" href="https://www.bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/" />
33 <meta name="news_keywords" content="Breach, Coding, Dependabot, GitHub, Information Stealer, Password Stealing Trojan, Security, InfoSec, Computer Security">
34 <meta property="og:url" content="https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/" />
35 <meta property="og:type" content="article" />
36 <meta property="og:title" content="GitHub repos bombarded by info-stealing commits masked as Dependabot" />
37 <meta property="og:description" content="Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers." />
38 <meta property="og:image" content="https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg" />
39 <meta property="og:image:secure_url" content="https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg" />
40 <meta property="fb:app_id" content="517620508265293" />
41 <meta property="og:image:width" content="1600" />
42 <meta property="og:image:height" content="900" />
43 <meta name="twitter:card" content="summary_large_image" />
44 <meta name="twitter:site" content="@BleepinComputer" />
45 <meta name="twitter:creator" content="@BleepinComputer" />
46 <meta name="twitter:title" content="GitHub repos bombarded by info-stealing commits masked as Dependabot" />
47 <meta name="twitter:description" content="Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers." />
48 <meta name="twitter:image" content="https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg" />
49 <script type="application/ld+json">
50 {
51 "@context": "https://schema.org",
52 "@type": "NewsArticle",
53 "url": "https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/",
54 "headline": "GitHub repos bombarded by info-stealing commits masked as Dependabot",
55 "name": "GitHub repos bombarded by info-stealing commits masked as Dependabot",
56 "mainEntityOfPage": {
57 "@type": "WebPage",
58 "id": "https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/"
59 },
60 "description": "Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers.",
61 "image": {
62 "@type": "ImageObject",
63 "url": "https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg",
64 "width": 1600,
65 "height": 900
66 },
67 "author": {
68 "@type": "Person",
69 "name": "Bill Toulas",
70 "url": "https://www.bleepingcomputer.com/author/bill-toulas/"
71 },
72 "keywords": ["Breach","Coding","Dependabot","GitHub","Information Stealer","Password Stealing Trojan","Security","InfoSec, Computer Security"],
73 "datePublished": "2023-09-27T08:00:00-04:00",
74 "dateModified": "2023-09-27T09:08:09-04:00",
75 "publisher": {
76 "@type": "Organization",
77 "name": "BleepingComputer",
78 "url": "https://www.bleepingcomputer.com/",
79 "logo": {
80 "@type": "ImageObject",
81 "url": "https://www.bleepstatic.com/logos/bleepingcomputer-logo.png",
82 "width": 700,
83 "height": 700
84 }
85 }
86 }
87 </script>
88 <link rel="amphtml" href="https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/amp/">
89 <LINK REL="alternate" TITLE="Bleeping Computer's News" HREF="https://www.bleepingcomputer.com/feed/" TYPE="application/rss+xml">
90 <script type="text/javascript" src="https://www.bleepstatic.com/js/redesign/jquery-3.5.1.min.js"></script>
91 <script type="text/javascript" src="https://www.bleepstatic.com/js/redesign/jquery-migrate-1.4.1.min.js"></script>
92 <script async type="text/javascript" src="https://www.bleepstatic.com/js/redesign/news.js"></script>
93 <script>
94 !function(n){if(!window.cnxps){window.cnxps={},window.cnxps.cmd=[];var t=n.createElement('iframe');t.display='none',t.onload=function(){var n=t.contentWindow.document,c=n.createElement('script');c.src='//cd.connatix.com/connatix.playspace.js',c.setAttribute('async','1'),c.setAttribute('type','text/javascript'),n.body.appendChild(c)},n.head.appendChild(t)}}(document);
95 </script>
96 <script id="6302b4e26cf04d8bbf9ab6cbec18daf4">
97 cnxps.cmd.push(function () {
98 cnxps({
99 playerId: '067e5169-ece3-4ce8-87ad-c7961b8bb396'
100 }).render('6302b4e26cf04d8bbf9ab6cbec18daf4');
101 });
102 </script>
103 <meta name="robots" content="max-image-preview:large">
104 <link rel="stylesheet" href="https://a.pub.network/core/pubfig/cls.css">
105 <script data-cfasync="false" type="text/javascript">
106 var freestar = freestar || {};
107 freestar.queue = freestar.queue || [];
108 freestar.config = freestar.config || {};
109 // Tag IDs set here, must match Tags served in the Body for proper setup
110 freestar.config.enabled_slots = [];
111 freestar.queue.push(function() {
112
113 googletag.pubads().setTargeting('section', ['news','security']);
114 });
115
116 freestar.initCallback = function () { (freestar.config.enabled_slots.length === 0) ? freestar.initCallbackCalled = false : freestar.newAdSlots(freestar.config.enabled_slots) }
117 </script>
118 <script src="https://a.pub.network/bleepingcomputer-com/pubfig.min.js" async></script>
119
120 <script data-cfasync="false" type="text/javascript">
121 ;(function(o) {
122 var w=window.top,a='apdAdmin',ft=w.document.getElementsByTagName('head')[0],
123 l=w.location.href,d=w.document;w.apd_options=o;
124 if(l.indexOf('disable_fi')!=-1) { console.error("disable_fi has been detected in URL. FI functionality is disabled for this page view."); return; }
125 var fiab=d.createElement('script'); fiab.type = 'text/javascript';
126 fiab.src=o.scheme+'ecdn.analysis.fi/static/js/fab.js';fiab.id='fi-'+o.websiteId;
127 ft.appendChild(fiab, ft);if(l.indexOf(a)!=-1) w.localStorage[a]=1; var aM = w.localStorage[a]==1, fi=d.createElement('script');
128 fi.type='text/javascript'; fi.async=true; if(aM) fi['data-cfasync']='false';
129 fi.src=o.scheme+(aM?'cdn':'ecdn') + '.firstimpression.io/' + (aM ? 'fi.js?id='+o.websiteId : 'fi_client.js');
130 ft.appendChild(fi);
131 })({
132 'websiteId': 5971,
133 'scheme': '//'
134 });
135 </script>
136
137 <script src="https://www.bleepstatic.com/js/qc-consent/qc-consent.js" async="true"></script>
138
139 <script async src="https://www.googletagmanager.com/gtag/js?id=UA-91740-1"></script>
140 <script>
141 window.dataLayer = window.dataLayer || [];
142 function gtag(){dataLayer.push(arguments);}
143 gtag('js', new Date());
144
145 gtag('config', 'UA-91740-1');
146 </script>
147
148 </head>
149 <body>
150 <div class="bc_wrapper">
151
152 <header>
153 <div class="container">
154 <div class="row">
155 <div class="col-md-4">
156 <a class="bc_logo" aria-label="BleepingComputer.com" href="https://www.bleepingcomputer.com/"><img src="https://www.bleepstatic.com/images/site/logo.png" width="287" height="24" alt="BleepingComputer.com logo"></a>
157 </div>
158 <div class="col-md-8">
159 <ul class="bc_social_icons">
160 <li><a href="https://www.facebook.com/BleepingComputer" aria-label="Visit BleepingComputer's Facebook profile"><span title="BleepingComputer Facebook page" class="fa-brands fa-facebook-f"></span></a></li>
161 <li><a href="https://twitter.com/BleepinComputer" aria-label="Visit BleepingComputer's Twitter profile"><span aria-hidden="true" title="BleepingComputer Twitter page" class="fa-brands fa-twitter"></span></a></li>
162 <li><a href="https://infosec.exchange/@BleepingComputer" aria-label="Visit BleepingComputer's Mastodon profile"><span aria-hidden="true" title="BleepingComputer Mastodon profile" class="fa-brands fa-mastodon"></span></a></li>
163 <li><a href="https://www.youtube.com/user/BleepingComputer" aria-label="Visit BleepingComputer's YouTube channel"><span aria-hidden="true" title="BleepingComputer YouTube page" class="fa-brands fa-youtube"></span></a></li>
164 </ul>
165 <div class="bc_search_box">
166 <form title="Search site" action="https://www.bleepingcomputer.com/search/">
167 <input type="hidden" name="cx" value="partner-pub-0920899300397823:3529943228" />
168 <input type="hidden" name="cof" value="FORID:10" />
169 <input type="hidden" name="ie" value="UTF-8" />
170 <input type="search" name="q" aria-label="Search Site" placeholder="Search Site" />
171 </form>
172 <script async type="text/javascript" src="https://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
173 </div>
174 <div class="bc_login">
175 <input aria-label="Login to BleepingComputer" type="submit" value="Login" class="bc_login_btn">
176 <input aria-label="Register account" type="submit" value="Sign up" class="bc_signup_btn" onclick="window.location='https://www.bleepingcomputer.com/forums/index.php?app=core&module=global§ion=register';" />
177 </div>
178 </div>
179 </div>
180 </div>
181
182 <nav class="bc_navigation">
183 <div class="container">
184 <span id="toggle-nav" class="toggle-site-nav">
185 <span></span>
186 </span>
187 <div class="site-nav" id="nav" role="navigation">
188 <ul class="bc_social_icons bc_mob">
189 <li><a href="https://www.facebook.com/BleepingComputer" aria-label="Visit BleepingComputer's Facebook profile"><span aria-hidden="true" class="fa-brands fa-facebook-f"></span></a></li>
190 <li><a href="https://twitter.com/BleepinComputer" aria-label="Visit BleepingComputer's Twitter profile"><span aria-hidden="true" class="fa-brands fa-twitter"></span></a></li>
191 <li><a href="https://infosec.exchange/@BleepingComputer" aria-label="Visit BleepingComputer's Mastodon profile"><span aria-hidden="true" title="BleepingComputer Mastodon profile" class="fa-brands fa-mastodon"></span></a></li>
192 <li><a href="https://www.youtube.com/user/BleepingComputer" aria-label="Visit BleepingComputer's YouTube profile"><span aria-hidden="true" class="fa-brands fa-youtube"></span></a></li>
193 </ul>
194 <div class="bc_search_box bc_mob">
195 <form action="https://www.bleepingcomputer.com/search/">
196 <input type="hidden" name="cx" value="partner-pub-0920899300397823:3529943228" />
197 <input type="hidden" name="cof" value="FORID:10" />
198 <input type="hidden" name="ie" value="UTF-8" />
199 <input type="search" name="q" aria-label="Search Site" placeholder="Search Site" />
200 </form>
201 <script async type="text/javascript" src="https://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
202 </div>
203 <div class="bc_login bc_mob">
204 <input aria-label="Login to BleepingComputer" type="submit" value="Login" class="bc_login_btn">
205 <input aria-label="Register account" type="submit" value="Sign up" class="bc_signup_btn" onclick="window.location='https://www.bleepingcomputer.com/forums/index.php?app=core&module=global§ion=register';">
206 </div>
207 <ul class="nav-menu">
208 <li class="bc_dropdown"><a href="https://www.bleepingcomputer.com/">News</a>
209 <div class="bc_sub_menu">
210 <div role="tabpanel">
211 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
212 <li class="active"><a href="#nfeatured" role="tab" data-toggle="tab">Featured</a></li>
213 <li><a href="#nlatest" role="tab" data-toggle="tab">Latest</a></li>
214 </ul>
215 <div class="tab-content">
216 <div role="tabpanel" class="tab-pane active" id="nfeatured">
217 <ul>
218 <li>
219 <a href="https://www.bleepingcomputer.com/news/security/millions-of-exim-mail-servers-exposed-to-zero-day-rce-attacks/" class="nmic">
220 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2023/09/29/thumb/211x130_Exim-headpic.jpg" alt="Millions of Exim mail servers exposed to zero-day RCE attacks" height="130px" width="100%">
221 <p>Millions of Exim mail servers exposed to zero-day RCE attacks</p>
222 </a>
223 </li>
224 <li>
225 <a href="https://www.bleepingcomputer.com/news/security/progress-warns-of-maximum-severity-ws-ftp-server-vulnerability/" class="nmic">
226 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2023/09/28/thumb/211x130_Progress.jpg" alt="Progress warns of maximum severity WS_FTP Server vulnerability" height="130px" width="100%">
227 <p>Progress warns of maximum severity WS_FTP Server vulnerability</p>
228 </a>
229 </li>
230 <li>
231 <a href="https://www.bleepingcomputer.com/news/security/bing-chat-responses-infiltrated-by-ads-pushing-malware/" class="nmic">
232 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2023/02/17/thumb/211x130_bing-chat-header-blue.jpg" alt="Bing Chat responses infiltrated by ads pushing malware" height="130px" width="100%">
233 <p>Bing Chat responses infiltrated by ads pushing malware</p>
234 </a>
235 </li>
236 <li>
237 <a href="https://www.bleepingcomputer.com/news/security/microsoft-breach-led-to-theft-of-60-000-us-state-dept-emails/" class="nmic">
238 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2023/09/28/thumb/211x130_Hacker_world_map.jpg" alt="Microsoft breach led to theft of 60,000 US State Dept emails" height="130px" width="100%">
239 <p>Microsoft breach led to theft of 60,000 US State Dept emails</p>
240 </a>
241 </li>
242 </ul>
243 </div>
244 <div role="tabpanel" class="tab-pane" id="nlatest">
245 <ul>
246 <li>
247 <a href="https://www.bleepingcomputer.com/news/security/shelltorch-flaws-expose-ai-servers-to-code-execution-attacks/" class="nmic">
248 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2022/05/12/thumb/211x130_evil-hacker-ai.jpg" alt="ShellTorch flaws expose AI servers to code execution attacks" height="130px" width="100%">
249 <p>ShellTorch flaws expose AI servers to code execution attacks</p>
250 </a>
251 </li>
252 <li>
253 <a href="https://www.bleepingcomputer.com/news/security/qualcomm-says-hackers-exploit-3-zero-days-in-its-gpu-dsp-drivers/" class="nmic">
254 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2021/05/05/thumb/211x130_Qualcomm.jpg" alt="Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers" height="130px" width="100%">
255 <p>Qualcomm says hackers exploit 3 zero-days in its GPU, DSP drivers</p>
256 </a>
257 </li>
258 <li>
259 <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-teams-get-fixes-for-zero-days-in-open-source-libraries/" class="nmic">
260 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2021/09/05/thumb/211x130_Microsoft.jpg" alt="Microsoft Edge, Teams get fixes for zero-days in open-source libraries" height="130px" width="100%">
261 <p>Microsoft Edge, Teams get fixes for zero-days in open-source libraries</p>
262 </a>
263 </li>
264 <li>
265 <a href="https://www.bleepingcomputer.com/news/security/evilproxy-uses-indeedcom-open-redirect-for-microsoft-365-phishing/" class="nmic">
266 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/hl-images/2022/07/22/thumb/211x130_Microsoft_365.jpg" alt="EvilProxy uses indeed.com open redirect for Microsoft 365 phishing" height="130px" width="100%">
267 <p>EvilProxy uses indeed.com open redirect for Microsoft 365 phishing</p>
268 </a>
269 </li>
270 </ul>
271 </div>
272 </div>
273 </div>
274 </div>
275 </li>
276 <li class="bc_dropdown"><a href="https://www.bleepingcomputer.com/download/">Downloads</a>
277 <div class="bc_sub_menu">
278 <div role="tabpanel">
279 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
280 <li class="active"><a href="#dlatest" role="tab" data-toggle="tab">Latest</a></li>
281 <li><a href="#most" role="tab" data-toggle="tab">Most Downloaded</a></li>
282 </ul>
283 <div class="tab-content">
284 <div role="tabpanel" class="tab-pane active" id="dlatest">
285 <ul>
286 <li>
287 <a href="https://www.bleepingcomputer.com/download/qualys-browsercheck/" class="nmic">
288 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/2/201-qualys-browsercheck-for-windows.jpg" alt="Qualys BrowserCheck" height="130px" width="100%">
289 <p class="center">Qualys BrowserCheck</p>
290 </a>
291 </li>
292 <li>
293 <a href="https://www.bleepingcomputer.com/download/stopdecrypter/" class="nmic">
294 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/2/200-stopdecrypter.jpg" alt="STOPDecrypter" height="130px" width="100%">
295 <p class="center">STOPDecrypter</p>
296 </a>
297 </li>
298 <li>
299 <a href="https://www.bleepingcomputer.com/download/auroradecrypter/" class="nmic">
300 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/1/199-auroradecrypter.jpg" alt="AuroraDecrypter" height="130px" width="100%">
301 <p class="center">AuroraDecrypter</p>
302 </a>
303 </li>
304 <li>
305 <a href="https://www.bleepingcomputer.com/download/fileslockerdecrypter/" class="nmic">
306 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/1/198-fileslockerdecryptor.jpg" alt="FilesLockerDecrypter" height="130px" width="100%">
307 <p class="center">FilesLockerDecrypter</p>
308 </a>
309 </li>
310 </ul>
311 </div>
312 <div role="tabpanel" class="tab-pane" id="most">
313 <ul>
314 <li>
315 <a href="/download/adwcleaner/" class="nmic">
316 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/0/96-adwcleaner.jpg" alt="AdwCleaner" height="130px" width="100%">
317 <p class="center">AdwCleaner</p>
318 </a>
319 </li>
320 <li>
321 <a href="/download/combofix/" class="nmic">
322 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/0/9-combofix.jpg" alt="ComboFix" height="130px" width="100%">
323 <p class="center">ComboFix</p>
324 </a>
325 </li>
326 <li>
327 <a href="/download/rkill/" class="nmic">
328 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/0/8-rkill.jpg" alt="RKill" height="130px" width="100%">
329 <p class="center">RKill</p>
330 </a>
331 </li>
332 <li>
333 <a href="/download/junkware-removal-tool/" class="nmic">
334 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/download/nav-header-images/0/98-junkware-removal-tool.jpg" alt="Junkware Removal Tool" height="130px" width="100%">
335 <p class="center">Junkware Removal Tool</p>
336 </a>
337 </li>
338 </ul>
339 </div>
340 </div>
341 </div>
342 </div>
343 </li>
344 <li class="bc_dropdown"><a href="https://www.bleepingcomputer.com/vpn/">VPNs</a>
345 <div class="bc_sub_menu">
346 <div role="tabpanel">
347 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
348 <li class="active"><a href="#vpopular" role="tab" data-toggle="tab">Popular</a></li>
349 </ul>
350 <div class="tab-content">
351 <div role="tabpanel" class="tab-pane active" id="vpopular">
352 <ul>
353 <li>
354 <a href="https://www.bleepingcomputer.com/vpn/guides/best-vpn/" class="nmic">
355 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/posts/2023/03/16/Best_VPN_services_for_2023.jpg" alt="Best VPNs" height="130px" width="100%">
356 <p>Best VPNs</p>
357 </a>
358 </li>
359 <li>
360 <a href="https://www.bleepingcomputer.com/vpn/guides/change-ip-address/" class="nmic">
361 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/posts/2023/03/16/change_ip_address_(2).jpg" alt="How to change IP address" height="130px" width="100%">
362 <p>How to change IP address</p>
363 </a>
364 </li>
365 <li>
366 <a href="https://www.bleepingcomputer.com/vpn/guides/access-dark-web-safely/" class="nmic">
367 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/content/posts/2023/03/16/Best_VPN_services_for_2023.jpg" alt="Access the dark web safely" height="130px" width="100%">
368 <p>Access the dark web safely</p>
369 </a>
370 </li>
371 <li>
372 <a href="https://www.bleepingcomputer.com/vpn/guides/watch-youtube-tv-abroad-vpn/" class="nmic">
373 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/news/u/1274444/How%20to%20watch%20YouTube%20TV%20from%20anywhere%20with%20a%20VPN.jpg" alt="Best VPN for YouTube" height="130px" width="100%">
374 <p>Best VPN for YouTube</p>
375 </a>
376 </li>
377 </ul>
378 </div>
379 </div>
380 </div>
381 </div>
382 </li>
383 <li class="bc_dropdown"><a href="https://www.bleepingcomputer.com/virus-removal/">Virus Removal Guides</a>
384 <div class="bc_sub_menu">
385 <div role="tabpanel">
386 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
387 <li class="active"><a href="#vlatest" role="tab" data-toggle="tab">Latest</a></li>
388 <li><a href="#vmost" role="tab" data-toggle="tab">Most Viewed</a></li>
389 <li><a href="#ransomware" role="tab" data-toggle="tab">Ransomware</a></li>
390 </ul>
391 <div class="tab-content">
392 <div role="tabpanel" class="tab-pane active" id="vlatest">
393 <ul>
394 <li>
395 <a href="/virus-removal/remove-theonlinesearch.com-search-redirect" class="nmic">
396 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/removal-guides/t/Theonlinesearch.com/theonlinesearch.com-search-redirect-thmb-350.jpg" alt="Remove the Theonlinesearch.com Search Redirect" height="130px" width="100%">
397 <p>Remove the Theonlinesearch.com Search Redirect</p>
398 </a>
399 </li>
400 <li>
401 <a href="/virus-removal/remove-smartwebfinder.com-search-redirect" class="nmic">
402 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/removal-guides/s/smartwebfinder-redirect/smartwebfinder-redirect-thmb-350.jpg" alt="Remove the Smartwebfinder.com Search Redirect" height="130px" width="100%">
403 <p>Remove the Smartwebfinder.com Search Redirect</p>
404 </a>
405 </li>
406 <li>
407 <a href="/virus-removal/how-to-remove-the-pblock-adware-extension" class="nmic">
408 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/removal-guides/p/pblock/pblock-extension-thmb-350.jpg" alt="How to remove the PBlock+ adware browser extension" height="130px" width="100%">
409 <p>How to remove the PBlock+ adware browser extension</p>
410 </a>
411 </li>
412 <li>
413 <a href="/virus-removal/remove-toksearches.xyz-search-redirect" class="nmic">
414 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/removal-guides/t/toksearches/toksearches-redirect-thmb-350.jpg" alt="Remove the Toksearches.xyz Search Redirect" height="130px" width="100%">
415 <p>Remove the Toksearches.xyz Search Redirect</p>
416 </a>
417 </li>
418 </ul>
419 </div>
420 <div role="tabpanel" class="tab-pane" id="vmost">
421 <ul>
422 <li>
423 <a href="/virus-removal/remove-security-tool" class="nmic">
424 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/s/securitytool/security-tool-thmb-350.jpg" alt="Remove Security Tool and SecurityTool (Uninstall Guide)" height="130px" width="100%">
425 <p>Remove Security Tool and SecurityTool (Uninstall Guide)</p>
426 </a>
427 </li>
428 <li>
429 <a href="/virus-removal/remove-vundo-virtumonde" class="nmic">
430 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/navigation/generic-chalkboard-211x130.jpg" alt="How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo" height="130px" width="100%">
431 <p>How to Remove WinFixer / Virtumonde / Msevents / Trojan.vundo</p>
432 </a>
433 </li>
434 <li>
435 <a href="/virus-removal/uninstall-antivirus-2009" class="nmic">
436 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/a/antivirus-2009/antivirus-2009-thmb-350.jpg" alt="How to remove Antivirus 2009 (Uninstall Instructions)" height="130px" width="100%">
437 <p>How to remove Antivirus 2009 (Uninstall Instructions)</p>
438 </a>
439 </li>
440 <li>
441 <a href="/virus-removal/remove-tdss-tdl3-alureon-rootkit-using-tdsskiller" class="nmic">
442 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/tools/tdsskiller/tdsskiller-start-thmb-350.jpg" alt="How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller" height="130px" width="100%">
443 <p>How to remove Google Redirects or the TDSS, TDL3, or Alureon rootkit using TDSSKiller</p>
444 </a>
445 </li>
446 </ul>
447 </div>
448 <div role="tabpanel" class="tab-pane" id="ransomware">
449 <ul>
450 <li>
451 <a href="/virus-removal/locky-ransomware-information-help" class="nmic">
452 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/l/locky/locky-header-thmb-350.png" alt="Locky Ransomware Information, Help Guide, and FAQ" height="130px" width="100%">
453 <p>Locky Ransomware Information, Help Guide, and FAQ</p>
454 </a>
455 </li>
456 <li>
457 <a href="/virus-removal/cryptolocker-ransomware-information" class="nmic">
458 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/c/cryptolocker/CryptoLocker-thmb-350.jpg" alt="CryptoLocker Ransomware Information Guide and FAQ" height="130px" width="100%">
459 <p>CryptoLocker Ransomware Information Guide and FAQ</p>
460 </a>
461 </li>
462 <li>
463 <a href="/virus-removal/cryptorbit-ransomware-information" class="nmic">
464 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/c/cryptorbit/howdecrypt-thmb-350.gif" alt="CryptorBit and HowDecrypt Information Guide and FAQ" height="130px" width="100%">
465 <p>CryptorBit and HowDecrypt Information Guide and FAQ</p>
466 </a>
467 </li>
468 <li>
469 <a href="/virus-removal/cryptodefense-ransomware-information" class="nmic">
470 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/swr-guides/c/CryptoDefense/how_decrypt-html-thmb-350.jpg" alt="CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ" height="130px" width="100%">
471 <p>CryptoDefense and How_Decrypt Ransomware Information Guide and FAQ</p>
472 </a>
473 </li>
474 </ul>
475 </div>
476 </div>
477 </div>
478 </div>
479 </li>
480 <li class="bc_dropdown"><a href="https://www.bleepingcomputer.com/tutorials/">Tutorials</a>
481 <div class="bc_sub_menu">
482 <div role="tabpanel">
483 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
484 <li class="active"><a href="#tlatest" role="tab" data-toggle="tab">Latest</a></li>
485 <li><a href="#popular" role="tab" data-toggle="tab">Popular</a></li>
486 </ul>
487 <div class="tab-content">
488 <div role="tabpanel" class="tab-pane active" id="tlatest">
489 <ul>
490 <li>
491 <a href="/tutorials/how-to-enable-kernel-mode-hardware-enforced-stack-protection-in-windows-11/" class="nmic">
492 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/7/374-Microsoft_Defender_headpic.jpg" alt="How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11" height="130px" width="100%">
493 <p>How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11</p>
494 </a>
495 </li>
496 <li>
497 <a href="/tutorials/how-to-use-the-windows-registry-editor/" class="nmic">
498 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/7/371-windows-registry-editor.jpg" alt="How to use the Windows Registry Editor" height="130px" width="100%">
499 <p>How to use the Windows Registry Editor</p>
500 </a>
501 </li>
502 <li>
503 <a href="/tutorials/how-to-backup-and-restore-the-windows-registry/" class="nmic">
504 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/7/372-Windows.jpg" alt="How to backup and restore the Windows Registry" height="130px" width="100%">
505 <p>How to backup and restore the Windows Registry</p>
506 </a>
507 </li>
508 <li>
509 <a href="/tutorials/how-to-open-a-windows-11-command-prompt-as-administrator/" class="nmic">
510 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/7/370-windows-11-admin-prompt-header.jpg" alt="How to open a Windows 11 Command Prompt as Administrator" height="130px" width="100%">
511 <p>How to open a Windows 11 Command Prompt as Administrator</p>
512 </a>
513 </li>
514 </ul>
515 </div>
516 <div role="tabpanel" class="tab-pane" id="popular">
517 <ul>
518 <li>
519 <a href="/tutorials/how-to-start-windows-in-safe-mode/" class="nmic">
520 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/1/61-startup-settings.png" alt="How to start Windows in Safe Mode" height="130px" width="100%">
521 <p>How to start Windows in Safe Mode</p>
522 </a>
523 </li>
524 <li>
525 <a href="/tutorials/how-to-remove-a-trojan-virus-worm-or-malware/" class="nmic">
526 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/2/101-Cerber-wallpaper.png" alt="How to remove a Trojan, Virus, Worm, or other Malware" height="130px" width="100%">
527 <p>How to remove a Trojan, Virus, Worm, or other Malware</p>
528 </a>
529 </li>
530 <li>
531 <a href="/tutorials/show-hidden-files-in-windows-7/" class="nmic">
532 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/3/151-show-hidden-files.jpg" alt="How to show hidden files in Windows 7" height="130px" width="100%">
533 <p>How to show hidden files in Windows 7</p>
534 </a>
535 </li>
536 <li>
537 <a href="/tutorials/how-to-see-hidden-files-in-windows/" class="nmic">
538 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/site/tutorials/nav-header-images/1/62-hidden-files.jpg" alt="How to see hidden files in Windows" height="130px" width="100%">
539 <p>How to see hidden files in Windows</p>
540 </a>
541 </li>
542 </ul>
543 </div>
544 </div>
545 </div>
546 </div>
547 </li>
548 <li class="bc_dropdown"><a href="https://deals.bleepingcomputer.com/">Deals</a>
549 <div class="bc_sub_menu">
550 <div role="tabpanel">
551 <ul class="nav nav-tabs" role="tablist" id="bc_drop_tab">
552 <li class="active"><a href="#dcategories" role="tab" data-toggle="tab">Categories</a></li>
553 </ul>
554 <div class="tab-content">
555 <div role="tabpanel" class="tab-pane active" id="dcategories">
556 <ul>
557 <li>
558 <a href="https://deals.bleepingcomputer.com/deals/elearning?utm_source=bleepingcomputer.com&utm_medium=dd_cat">
559 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/deals/elearning-nav.jpg" alt="eLearning" height="130px" width="100%">
560 <p align="center">eLearning</p>
561 </a>
562 </li>
563 <li>
564 <a href="https://deals.bleepingcomputer.com/deals/certifications?utm_source=bleepingcomputer.com&utm_medium=dd_cat">
565 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" class="b-lazy" data-src="https://www.bleepstatic.com/images/deals/it-certification-nav.jpg" alt="IT Certification Courses" height="130px" width="100%">
566 <p align="center">IT Certification Courses</p>
567 </a>
568 </li>
569 <li>
570 <a href="https://deals.bleepingcomputer.com/deals/gear-gadgets?utm_source=bleepingcomputer.com&utm_medium=dd_cat">
571 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" data-src="https://www.bleepstatic.com/images/deals/gear-gadgets-nav.jpg" class="b-lazy" alt="Gear & Gadgets" height="130px" width="100%">
572 <p align="center">Gear + Gadgets</p>
573 </a>
574 </li>
575 <li>
576 <a href="https://deals.bleepingcomputer.com/collections/tag-cyber-security?utm_source=bleepingcomputer.com&utm_medium=dd_cat">
577 <img src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" data-src="https://www.bleepstatic.com/images/deals/security-nav.jpg" class="b-lazy" alt="Security" height="130px" width="100%">
578 <p align="center">Security</p>
579 </a>
580 </li>
581 </ul>
582 </div>
583 </div>
584 </div>
585 </div>
586 </li>
587 <li><a href="https://www.bleepingcomputer.com/forums/">Forums</a></li>
588 <li class="bc_dropdown bc_more_nav"><a aria-label="Click here to see more BleepingComputer sections" id="more_dd" href="#">More</a>
589 <ul id="bc_more-nav" class="bc_more_submenu">
590 <li><a href="https://www.bleepingcomputer.com/startups/">Startup Database</a></li>
591 <li><a href="https://www.bleepingcomputer.com/uninstall/">Uninstall Database</a></li>
592 <li><a href="https://www.bleepingcomputer.com/glossary/">Glossary</a></li>
593 <li><a href="https://www.bleepingcomputer.com/forums/t/730914/the-bleepingcomputer-official-discord-chat-server-come-join-the-fun/">Chat on Discord</a></li>
594 <li><a href="https://www.bleepingcomputer.com/news-tip/">Send us a Tip!</a></li>
595 <li><a href="https://www.bleepingcomputer.com/welcome-guide/">Welcome Guide</a></li>
596 </ul>
597 </li>
598 </ul>
599 </div>
600 </div>
601 </nav>
602 </header>
603
604 <section class="cz-oa-wrapp">
605 <div class="container">
606 <div class="row">
607 <div class="col-md-12">
608 <div class="cz-toa-wrapp">
609 <div align="center" data-freestar-ad="__320x50 __970x250" id="bleepingcomputer_728x90_970x90_970x250_320x50_ATF">
610 <script data-cfasync="false" type="text/javascript">
611 freestar.config.enabled_slots.push({ placementName: "bleepingcomputer_728x90_970x90_970x250_320x50_ATF", slotId: "bleepingcomputer_728x90_970x90_970x250_320x50_ATF" });
612 </script>
613 </div>
614 </div>
615 </div>
616 </div>
617 </div>
618 </section>
619 <section>
620 <div class="container">
621 <div class="row">
622 <div class="col-md-12">
623 <div class="cz-breadcrumb-outer-wrapp">
624 <div class="cz-breadcrumb-left-area">
625 <div class="cz-breadcrumb">
626 <ul itemscope itemtype="https://schema.org/BreadcrumbList">
627 <li itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><a href="https://www.bleepingcomputer.com/" itemprop="item"><span itemprop="name">Home</span></a><meta itemprop="position" content="1" /></li><li itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><span itemprop="name"><a href="https://www.bleepingcomputer.com/news/" itemprop="item">News</a></span><meta itemprop="position" content="2" /></li><li itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><span itemprop="name"><a href="https://www.bleepingcomputer.com/news/security/" itemprop="item">Security</a></span><meta itemprop="position" content="3" /></li><li class="active" itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><span itemprop="name">GitHub repos bombarded by info-stealing commits masked as Dependabot</span><meta itemprop="position" content="4" /></li>
628 </ul>
629 </div>
630 </div>
631 <div class="cz-breadcrumb-right-area">
632 <div class="cz-like-wrapper">
633 <ul>
634 <li><div class="addthis_sharing_toolbox"></div></li>
635 <li class="cz-print-icon"><a aria-label="Print article" href="#"> </a></li>
636 </ul>
637 </div>
638 </div>
639 </div>
640 </div>
641 </div>
642 </div>
643 </section>
644
645 <section class="bc_main_content">
646 <div class="container">
647 <div class="row">
648 <div class="col-md-8">
649 <div class="cz-main-left-section">
650 <article><div class="article_section">
651 <h1>GitHub repos bombarded by info-stealing commits masked as Dependabot</h1>
652 <div class="cz-news-story-title-section">
653 <div class="cz-news-title-left-area">
654 By <h6><a rel="author" href="https://www.bleepingcomputer.com/author/bill-toulas/" class="author"><span itemprop="author" itemscope itemtype="https://schema.org/Person"><span itemprop="name">Bill Toulas</span></span></a></h6>
655 </div>
656 <meta itemprop="articleSection" content="Security"><div class="cz-news-title-right-area">
657 <ul><li class="cz-news-date">September 27, 2023</li>
658 <li class="cz-news-time">08:00 AM</li>
659 <li class="cz-news-comment"><a href="#comment_form">0</a></li>
660 </ul></div>
661 </div>
662 <div class="articleBody">
663 <p style="text-align:center"><img alt="GitHub" height="900" src="https://www.bleepstatic.com/content/hl-images/2022/04/08/GitHub___headpic.jpg" width="1600"></p>
664 <p>Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from developers.</p>
665 <p>The campaign unfolded in July 2023, when researchers discovered unusual commits on hundreds of public and private repositories forged to appear as Dependabot commits.</p>
666 <p>Dependabot is an automated tool provided by GitHub that scans projects for vulnerable dependencies and then automatically issues pull requests to install the updated versions.</p>
667 <p>As <a href="https://checkmarx.com/blog/surprise-when-dependabot-contributes-malicious-code/" target="_blank" rel="nofollow noopener">reported today by Checkmarx</a>, these fake Dependabot contributions were made possible using stolen GitHub access tokens with the attackers' goal of injecting malicious code to steal the project's secrets.</p>
668 <h2>Impersonating GitHub's Dependabot</h2>
669 <p>The attack began with the attackers somehow obtaining their targets' personal GitHub access tokens, which Checkmarx has no insight into.</p>
670 <p>The threat actors then appear to be using automated scripts to create fake commit messages titled "fix" that appear to be by the user account "dependabot[bot]."</p>
671 <p>These commits introduce malicious code into the project that performs the following two actions:</p>
672 <ol><li>Extract secrets from the targeted GitHub project and send them to the attacker's command and control server.</li>
673 <li>Modify existing JavaScript files in the breached repository to add malware that steals passwords from web-form submissions and sends them to the same C2 address.</li>
674 </ol><p>The secrets exfiltration is achieved by adding the GitHub action file "hook.yml" as a new workflow triggered on every code push event on the impacted repository.</p>
675 <div style="text-align:center">
676 <figure class="image" style="display:inline-block"><img alt="Example of the malicious commit" height="600" src="https://www.bleepstatic.com/images/news/u/1220909/2023/PyPI/10/malicious-commit.jpg" width="937"><figcaption><strong>Example of the malicious commit</strong> <em>(Checmarx)</em></figcaption></figure></div>
677 <p>The password-stealer component injects obfuscated JavaScript into the end of all JavaScript (.js) files that load the following script from a remote site. This script will monitor for form submissions to steal passwords from any form inputs of type 'password.'</p>
678 <div style="text-align:center">
679 <figure class="image" style="display:inline-block"><img alt="Password stealing code" height="600" src="https://www.bleepstatic.com/images/news/u/1220909/2023/PyPI/10/stealer.jpg" width="918"><figcaption><strong>Password stealing code invoked by the modified JS files</strong> <em>(Checkmarx)</em></figcaption></figure></div>
680 <p>As many compromised tokens also granted access to private repositories, the attack affected both public and private GitHub repositories.</p>
681 <h2>Possible compromise points</h2>
682 <p>Checkmarx's analysts examined the logs from some victims and found that their accounts were compromised using stolen PATs (personal access tokens).</p>
683 <p>These tokens are stored locally on the developer's computers and can be used to log in to GitHub without going through 2FA (two-factor authentication) steps.</p>
684 <p>"Sadly, the token's access log activity is not visible in the account's audit log. So if you're token got compromised, you can't know for sure because the access logs are missing," warns Checkmarx</p>
685 <div style="text-align:center">
686 <figure class="image" style="display:inline-block"><img alt="The attack chain" height="263" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" width="1200" data-src="https://www.bleepstatic.com/images/news/u/1220909/2023/PyPI/10/attack-process.jpg" class="b-lazy"><figcaption><strong>The attack chain </strong><em>(Checkmarx)</em></figcaption></figure></div>
687 <p>Although the cybersecurity firm didn't reach a concrete conclusion on the exact means by which the attackers stole these tokens, they assume it might be through a malware infection possibly introduced to the developer's device via a malicious package.</p>
688 <p>Most compromised users are from Indonesia, implying a targeted attack tailored to this demographic. However, the available evidence doesn't provide specific details about the theme.</p>
689 <p>A proposed measure to defend against these attacks is to switch to GitHub's <a href="https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/" target="_blank" rel="nofollow noopener">fine-grained personal access tokens</a>, which limits each user to specific permissions, hence reducing risks in case of compromise.</p>
690 <div class="cz-related-article-wrapp">
691 <h3>Related Articles:</h3>
692 <p><a href="https://www.bleepingcomputer.com/news/security/ssh-keys-stolen-by-stream-of-malicious-pypi-and-npm-packages/" class="ras">SSH keys stolen by stream of malicious PyPI and npm packages</a></p><p><a href="https://www.bleepingcomputer.com/news/security/fake-bitwarden-sites-push-new-zenrat-password-stealing-malware/" class="ras">Fake Bitwarden sites push new ZenRAT password-stealing malware</a></p><p><a href="https://www.bleepingcomputer.com/offer/deals/get-up-to-speed-on-python-with-74-off-a-python-bootcamp-bundle/" class="ras">Get up to speed on Python with $74 off a Python bootcamp bundle</a></p><p><a href="https://www.bleepingcomputer.com/news/security/github-passkeys-generally-available-for-passwordless-sign-ins/" class="ras">GitHub passkeys generally available for passwordless sign-ins</a></p><p><a href="https://www.bleepingcomputer.com/news/security/transunion-denies-it-was-hacked-links-leaked-data-to-3rd-party/" class="ras">TransUnion denies it was hacked, links leaked data to 3rd party</a></p>
693 </div>
694 </div>
695 </div>
696 </article><div class="asa">
697 <div align="center" data-freestar-ad="__320x50 __728x90" id="bleepingcomputer_728x90_320x50_InContent_1">
698 <script data-cfasync="false" type="text/javascript">
699 freestar.config.enabled_slots.push({ placementName: "bleepingcomputer_728x90_320x50_InContent_1", slotId: "bleepingcomputer_728x90_320x50_InContent_1" });
700 </script></div>
701 </div>
702 <div class="cz-news-tags-wrap">
703 <ul><li><a href="https://www.bleepingcomputer.com/tag/breach/">Breach</a></li>
704 <li><a href="https://www.bleepingcomputer.com/tag/coding/">Coding</a></li>
705 <li><a href="https://www.bleepingcomputer.com/tag/dependabot/">Dependabot</a></li>
706 <li><a href="https://www.bleepingcomputer.com/tag/github/">GitHub</a></li>
707 <li><a href="https://www.bleepingcomputer.com/tag/information-stealer/">Information Stealer</a></li>
708 <li><a href="https://www.bleepingcomputer.com/tag/password-stealing-trojan/">Password Stealing Trojan</a></li>
709 </ul></div>
710 <div class="cz-news-like-wrapp">
711 <div class="addthis_toolbox addthis_default_style addthis_32x32_style">
712 <div class="cz-news-like-left-area">
713 <ul><li><a aria-label="Share article on Facebook" class="addthis_button_facebook"></a></li>
714 <li><a aria-label="Share article on Twitter" class="addthis_button_twitter"></a></li>
715 <li><a aria-label="Share article on LinkedIn" class="addthis_button_linkedin"></a></li>
716 </ul></div>
717 <div class="cz-news-like-right-area">
718 <ul><li><a title="Email article" class="addthis_button_email"></a></li>
719 <li class="cz-lg-print-icon"><a aria-label="Print Article" title="Print article" href="#"></a></li>
720 </ul></div>
721 </div>
722 </div>
723 <div class="cz-full-bio-wrapp">
724 <div class="cz-full-bio-img-wrapp" title="Bill Toulas profile page">
725 <a style="background-image:url('https://www.bleepstatic.com/author/photos/42758747b8592c683aa2b2162019ddfa.jpg');" aria-label="Photo of Bill Toulas" alt-title="Bill Toulas profile page" class="author-img" href="https://www.bleepingcomputer.com/author/bill-toulas/"></a>
726 </div>
727 <div class="cz-full-bio-content-wrapp">
728 <h5><a href="https://www.bleepingcomputer.com/author/bill-toulas/" target="_blank">Bill Toulas</a> <span> <a href="mailto:bill.toulas@bleepingcomputer.com" aria-label="Email bill.toulas@bleepingcomputer.com" alt-title="Email bill.toulas@bleepingcomputer.com"><i aria-hidden="true" class="fa fa-envelope email" title="Email bill.toulas@bleepingcomputer.com"></i></a> <a href="https://twitter.com/billtoulas" target="_blank" rel="noopener" aria-label="Open Author's twitter page" alt-title="Open Author's twitter page"><i aria-hidden="true" class="fa-brands fa-twitter twitter" title="Open Author's twitter page"></i></a></span></h5>
729 Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks.
730 </div>
731 </div>
732 <div class="cz-story-navigation">
733 <ul><li><a href="https://www.bleepingcomputer.com/offer/deals/get-a-refurbished-lenovo-tab-4-android-tablet-for-under-80/"><i aria-hidden="true" title="Previous story" class="fa fa-chevron-left"></i> Previous Article </a></li>
734 <li><a href="https://www.bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/">Next Article <i aria-hidden="true" title="Next story" class="fa fa-chevron-right"></i></a></li>
735 </ul></div>
736 <div class="cz-post-comment-wrapp" id="comment_form">
737 <h5>Post a Comment <span><a href="https://www.bleepingcomputer.com/posting-guidelines/" target="_blank">Community Rules</a></span></h5>
738 <div class="cz-comment-loggin-wrapp">
739 <h6>You need to login in order to post a comment</h6>
740 <input type="submit" value="Login" class="bc_login_btn cz-green-bttn"><p>Not a member yet? <a href="https://www.bleepingcomputer.com/forums/index.php?app=core&module=global&section=register">Register Now</a></p>
741 </div>
742 </div>
743 <div class="cz-related-article-wrapp">
744 <h3>You may also like:</h3>
745 <script async src="//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js"></script><ins class="adsbygoogle" style="display:block" data-ad-format="autorelaxed" data-ad-client="ca-pub-0920899300397823" data-ad-slot="4359266829"></ins>
746 <script>
747 (adsbygoogle = window.adsbygoogle || []).push({});
748 </script></div>
749 </div>
750 </div>
751
752 <div class="col-md-4 bc_right_sidebar">
753 <div class="s-ou-wrap">
754 <div align="center">
755 <a href="https://www.bleepingcomputer.com/mgo/33/" rel="nofollow noopener" target="_blank"><img src="https://www.bleepstatic.com/comp/b/blink/blink-ai-copilot.gif" width="100%" height="auto"></a>
756 </div>
757 </div>
758 <div id="pop_stories">
759 <div class="cz-line-heading"><div class="cz-line-heading-inner">Popular Stories</div></div>
760 <ul>
761 <li>
762 <a class="pns" href="https://www.bleepingcomputer.com/news/security/new-marvin-attack-revives-25-year-old-decryption-flaw-in-rsa/">
763 <div class="bc_pop_story_img)">
764 <img class="b-lazy" alt="Key Decryptor Unlock" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" data-src="https://www.bleepstatic.com/content/hl-images/2022/10/09/thumb/292x176_cyber-key.jpg">
765 </div>
766 <p>New Marvin attack revives 25-year-old decryption flaw in RSA</p>
767 </a>
768 </li>
769 <li>
770 <a class="pns" href="https://www.bleepingcomputer.com/news/security/amazon-sends-mastercard-google-play-gift-card-order-emails-by-mistake/">
771 <div class="bc_pop_story_img)">
772 <img class="b-lazy" alt="Amazon Prime" src="data:image/gif;base64,R0lGODlhAQABAAAAACH5BAEKAAEALAAAAAABAAEAAAICTAEAOw==" data-src="https://www.bleepstatic.com/content/hl-images/2023/06/21/thumb/292x176_Amazon_prime.jpg">
773 </div>
774 <p>Amazon sends Mastercard, Google Play gift card order emails by mistake</p>
775 </a>
776 </li>
777 </ul>
778 </div>
779 <div class="s-ou-wrap">
780 <div align="center" data-freestar-ad="__300x250 __300x600" id="bleepingcomputer_300x250_300x600_160x600_Right_2">
781 <script data-cfasync="false" type="text/javascript">
782 freestar.config.enabled_slots.push({ placementName: "bleepingcomputer_300x250_300x600_160x600_Right_2", slotId: "bleepingcomputer_300x250_300x600_160x600_Right_2" });
783 </script>
784 </div>
785 </div>
786 <div class="s-ou-wrap" id="pinned">
787 <div align="center" data-freestar-ad="__300x250 __300x600" id="bleepingcomputer_300x250_300x600_160x600_Right_3">
788 <script data-cfasync="false" type="text/javascript">
789 freestar.config.enabled_slots.push({ placementName: "bleepingcomputer_300x250_300x600_160x600_Right_3", slotId: "bleepingcomputer_300x250_300x600_160x600_Right_3" });
790 </script>
791 </div>
792 </div>
793 </div>
794 </div>
795 </div>
796 </section>
797
798 <section class="cz-boa-wrapp">
799 <div class="container">
800 <div class="row">
801 <div class="col-md-12">
802 <div align="center" data-freestar-ad="__300x50 __970x250" id="bleepingcomputer_728x90_970x90_970x250_320x50_BTF">
803 <script data-cfasync="false" type="text/javascript">
804 freestar.config.enabled_slots.push({ placementName: "bleepingcomputer_728x90_970x90_970x250_320x50_BTF", slotId: "bleepingcomputer_728x90_970x90_970x250_320x50_BTF" });
805 </script>
806 </div>
807 </div>
808 </div>
809 </div>
810 </section>
811
812 <footer id="footer">
813 <div class="container">
814 <div class="row">
815 <div class="col-md-4">
816 <h5>Follow us:</h5>
817 <ul class="bc_social_icons">
818 <li><a href="https://www.facebook.com/BleepingComputer" aria-label="Visit BleepingComputer's Facebook page"><span aria-hidden="true" class="fa-brands fa-facebook-f"></span></a></li>
819 <li><a href="https://twitter.com/BleepinComputer" aria-label="Visit BleepingComputer's Twitter page"><span aria-hidden="true" class="fa-brands fa-twitter"></span></a></li>
820 <li><a href="https://infosec.exchange/@BleepingComputer" aria-label="Visit BleepingComputer's Mastodon profile"><span aria-hidden="true" title="BleepingComputer Mastodon profile" class="fa-brands fa-mastodon"></span></a></li>
821 <li><a href="https://www.youtube.com/user/BleepingComputer" aria-label="Visit BleepingComputer's YouTube page"><span aria-hidden="true" class="fa-brands fa-youtube"></span></a></li>
822 <li><a href="https://www.bleepingcomputer.com/feed/" aria-label="BleepingComputer's RSS Feeds"><span aria-hidden="true" class="fa fa-rss"></span></a></li>
823 </ul>
824 </div>
825 <div class="col-md-2">
826 <h5>Main Sections</h5>
827 <ul>
828 <li><a href="https://www.bleepingcomputer.com/">News</a></li>
829 <li><a href="https://www.bleepingcomputer.com/vpn/">VPN Buyer Guides</a></li>
830 <li><a href="https://www.bleepingcomputer.com/download/">Downloads</a></li>
831 <li><a href="https://www.bleepingcomputer.com/virus-removal/">Virus Removal Guides</a></li>
832 <li><a href="https://www.bleepingcomputer.com/tutorials/">Tutorials</a></li>
833 <li><a href="https://www.bleepingcomputer.com/startups/">Startup Database</a></li>
834 <li><a href="https://www.bleepingcomputer.com/uninstall/">Uninstall Database</a></li>
835 <li><a href="https://www.bleepingcomputer.com/glossary/">Glossary</a></li>
836 </ul>
837 </div>
838 <div class="col-md-2">
839 <h5>Community</h5>
840 <ul>
841 <li><a href="https://www.bleepingcomputer.com/forums/">Forums</a></li>
842 <li><a href="https://www.bleepingcomputer.com/forum-rules/">Forum Rules</a></li>
843 <li><a href="https://www.bleepingcomputer.com/forums/t/730914/the-bleepingcomputer-official-discord-chat-server-come-join-the-fun/">Chat</a></li>
844 </ul>
845 </div>
846 <div class="col-md-2">
847 <h5>Useful Resources</h5>
848 <ul>
849 <li><a href="https://www.bleepingcomputer.com/welcome-guide/">Welcome Guide</a></li>
850 <li><a href="https://www.bleepingcomputer.com/sitemap/">Sitemap</a></li>
851 </ul>
852 </div>
853 <div class="col-md-2">
854 <h5>Company</h5>
855 <ul>
856 <li><a href="https://www.bleepingcomputer.com/about/">About BleepingComputer</a></li>
857 <li><a href="https://www.bleepingcomputer.com/contact/">Contact Us</a></li>
858 <li><a href="https://www.bleepingcomputer.com/news-tip/">Send us a Tip!</a></li>
859 <li><a href="https://www.bleepingcomputer.com/advertise/">Advertising</a></li>
860 <li><a href="https://www.bleepingcomputer.com/write-for-bleepingcomputer/">Write for BleepingComputer</a></li>
861 <li><a href="https://www.bleepingcomputer.com/rss-feeds/">Social & Feeds</a></li>
862 <li><a href="https://www.bleepingcomputer.com/changelog/">Changelog</a></li>
863 </ul>
864 </div>
865 </div>
866 </div>
867 <div class="bc_footer_bottom">
868 <div class="container">
869 <div class="row">
870 <div class="col-md-6">
871 <p><a href="https://www.bleepingcomputer.com/terms-of-use/">Terms of Use</a> - <a href="https://www.bleepingcomputer.com/privacy/"> Privacy Policy</a> - <a href="https://www.bleepingcomputer.com/ethics-statement/">Ethics Statement</a> - <a href="https://www.bleepingcomputer.com/affiliate-disclosure/">Affiliate Disclosure</a></p>
872 </div>
873 <div class="col-md-6 bc_copyright">
874 <p>Copyright @ 2003 - 2023 <a href="https://www.bleepingcomputer.com/"> Bleeping Computer<sup>®</sup> LLC </a> - All Rights Reserved</p>
875 </div>
876 </div>
877 </div>
878 </div>
879 </footer>
880 </div>
881
882
883 <div class="bc_goto_top">
884 <a href="#" title="Back to Top"><i aria-hidden="true" class="fa fa-chevron-up"></i></a>
885 </div>
886
887
888 <div class="bc_popup" aria-modal="true" aria-label="Login form">
889 <div class="bc_login_form">
890 <a class="bc_popup_close" href="javascript:;" aria-label="Close login form" title="Close"></a>
891 <h4>Login</h4>
892 <form action="https://www.bleepingcomputer.com/forums/index.php?app=core&module=global&section=login&do=process&return=https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/" method="post">
893 <div class="bc_form_feild">
894 <label for="ips_username">Username</label>
895 <input aria-label="Enter login name" title="Enter login name" type="text" id="ips_username" name="ips_username" spellcheck="false" autocomplete="username">
896 </div>
897 <div class="bc_form_feild">
898 <label for="ips_password">Password</label>
899 <input aria-label="Enter login password" title="Enter login passwod" type="password" id="ips_password" name="ips_password" spellcheck="false" autocomplete="current-password">
900 </div>
901 <div class="bc_form_feild">
902 <div class="bc_remember">
903 <input id="remember" type="checkbox" name="rememberMe" value="1" checked="checked">
904 <label for="remember">Remember Me</label>
905 </div>
906 <div class="bc_anon">
907 <input id="anonymous" type="checkbox" name="anonymous" value="1">
908 <label for="anonymous">Sign in anonymously</label>
909 </div>
910 </div>
911 <div class="bc_btn_wrap">
912 <input type="hidden" name="auth_key" value="880ea6a14ea49e853634fbdc5015a024" />
913 <input type="submit" aria-label="Login to site" title="Login" value="Login" class="bc_sub_btn">
914 <a aria-label="Sign in with Twitter" href="https://www.bleepingcomputer.com/forums/index.php?app=core&module=global&section=login&serviceClick=twitter&return=https://www.bleepingcomputer.com/news/security/github-repos-bombarded-by-info-stealing-commits-masked-as-dependabot/" class="bc_twitter_btn"><img src="https://www.bleepstatic.com/images/site/login/twitter.png" width="28" height="24" alt="Sign in with Twitter button"> Sign in with Twitter</a>
915 <hr/>
916 <p>Not a member yet? <a aria-label="Register account" title="Register account" href="https://www.bleepingcomputer.com/forums/index.php?app=core&module=global§ion=register">Register Now</a></p>
917 </div>
918 </form>
919 </div>
920 </div>
921
922
923 <script async type="text/javascript" src="https://www.bleepstatic.com/js/redesign/bootstrap/js/bootstrap.js"></script>
924 <script src="https://www.bleepstatic.com/js/blazy/blazy.min.js"></script>
925 <script type="text/javascript" async src="https://www.bleepstatic.com/js/redesign/bleep.js"></script>
926 <script type="text/javascript" async defer src="https://www.bleepstatic.com/js/redesign/fancybox/jquery.fancybox.js"></script>
927 <script type="text/jscript">
928 $(document).ready(function(e) {
929 $('.articleBody img').not('a>img').not('.contrib_but>img').click(function(e) {
930 e.preventDefault();
931 $.fancybox({'href' : $(this).attr('src')});
932 });
933 });
934 </script>
935 <script src="//www.bleepstatic.com/js/fixto/fixto.min.js"></script>
936 <script type="text/javascript">
937 $(document).ready(function(){
938
939 var content = $('.cz-main-left-section');
940 var sidebar = $('.bc_right_sidebar');
941 var count = 0;
942 var myTimer;
943
944 function setEqualContainer() {
945 var getContentHeight = content.outerHeight();
946 var getSidebarHeight = sidebar.outerHeight();
947
948 if ( getContentHeight > getSidebarHeight ) {
949 sidebar.css('min-height', getContentHeight);
950 }
951
952 if ( getSidebarHeight > getContentHeight ) {
953 content.css('min-height', getSidebarHeight);
954 }
955 }
956
957 // creating the timer which will run every 500 milliseconds
958 // and will stop after the container will be loaded
959 // ...or after 15 seconds to not eat a lot of memory
960
961 myTimer = setInterval( function() {
962 count++;
963
964 if ( $('.testContainer').length == 0 ) {
965 setEqualContainer();
966 } else {
967 setEqualContainer();
968 clearInterval(myTimer);
969 }
970
971 if ( count == 15) {
972 clearInterval(myTimer);
973 }
974 }, 500);
975
976 $('#pinned').fixTo('.bc_right_sidebar', {
977 bottom: 25,
978 });
979
980 $('#more_dd').click(function (e) {
981 e.preventDefault()
982 });
983
984 $('.bc_goto_top a').click(function(){
985 $("html, body").animate({ scrollTop: 0 }, 600);
986 return false;
987 });
988 jQuery('.bc_login_btn').on('click', function() {
989 jQuery('.bc_popup').fadeIn("slow");
990 });
991 jQuery('.bc_popup_close').on('click', function() {
992 jQuery('.bc_popup').fadeOut("slow");
993 });
994
995 });
996 </script>
997 <script type="text/javascript">
998 // validate comment box not empty
999 function validate_comment_box_not_empty()
1000 {
1001 $('#frm_comment_box').submit(function(e) {
1002 if($('#comment_html_box').val().length==0)
1003 {
1004 alert("Please enter a comment before pressing submit");
1005 return false;
1006 }
1007 else
1008 {
1009 return true;
1010 }
1011 });
1012 }
1013
1014 function cz_strip_tags(input, allowed) {
1015 allowed = (((allowed || '') + '')
1016 .toLowerCase()
1017 .match(/<[a-z][a-z0-9]*>/g) || [])
1018 .join(''); // making sure the allowed arg is a string containing only tags in lowercase (<a><b><c>)
1019 var tags = /<\/?([a-z][a-z0-9]*)\b[^>]*>/gi,
1020 commentsAndPhpTags = /<!--[\s\S]*?-->|<\?(?:php)?[\s\S]*?\?>/gi;
1021 return input.replace(commentsAndPhpTags, '')
1022 .replace(tags, function($0, $1) {
1023 return allowed.indexOf('<' + $1.toLowerCase() + '>') > -1 ? $0 : '';
1024 });
1025 }
1026 function cz_br2nl(str) {
1027 var regex = /<br\s*[\/]?>/gi;
1028 //var pure_str = str.replace(regex,"\n");
1029 var pure_str = str.replace(regex,"");
1030 return cz_strip_tags(pure_str,'');
1031 }
1032 $(document).ready(function(e) {
1033 // validate comment box not empty
1034 validate_comment_box_not_empty();
1035
1036 // report comment
1037 $('#comment-report-other-reason-wrap').css('display','none');
1038 $('.cz-popup-close').click(function(e) {
1039 e.preventDefault();
1040 $('.cz-popup').fadeOut("slow");
1041 });
1042 $('.cz-comment-report-btn').click(function(e) {
1043 e.preventDefault();
1044 $('.cz-popup').css('height',$( document ).height()+'px');
1045 //var comment_box_report_top = $(this).offset().top;
1046 var comment_box_report_top = $(document).scrollTop();
1047 $('.cz-popup-wrapp').css('top',(comment_box_report_top+100)+'px');
1048 $('#comment-id-report').val($(this).attr('data-id'));
1049 $('.cz-popup').fadeIn("slow");
1050 });
1051 $("input[type='radio'][name='comment-report-reason']").click(function(e) {
1052 if($(this).val()=='Other')
1053 {
1054 $('#comment-report-other-reason-wrap').css('display','block');
1055 }
1056 else
1057 {
1058 $('#comment-report-other-reason-wrap').css('display','none');
1059 }
1060 });
1061 $('.comment-report-submit-btn').click(function(e) {
1062 e.preventDefault();
1063 var comment_report_reason = "";
1064 var comment_report_reason = $("input[type='radio'][name='comment-report-reason']:checked").val();
1065 if (comment_report_reason=='Other') {
1066 comment_report_reason = $('#comment-report-other-reason').val();
1067 }
1068 if(comment_report_reason=='') {
1069 alert('Please specify reason');
1070 }
1071 else
1072 {
1073 $('.cz-popup-report-submiting').css('display','inline-block');
1074 $.ajax({
1075
1076 type: "POST",
1077 url: 'https://www.bleepingcomputer.com/report-comment/',
1078 data: { comment_id: $('#comment-id-report').val(), reason: comment_report_reason },
1079 success: function(data) {
1080 $('.cz-popup-report-submiting').css('display','none');
1081 $('.cz-popup').fadeOut("slow");
1082 }
1083
1084 });
1085 }
1086 });
1087 // report comment
1088
1089 $('.cz_comment_reply_btn').click(function(e) {
1090 e.preventDefault();
1091 $('#parent_comment_id').val($(this).attr('data-id'));
1092 $('#comment_html_box').attr('placeholder','Replying to '+$(this).attr('data-name'));
1093 var comment_box_top = $('.cz-post-comment-wrapp').offset().top;
1094 $("html, body").animate({ scrollTop: comment_box_top-100 }, 600);
1095 $('#comment_html_box').focus();
1096 });
1097 $('.cz_comment_quote_btn').click(function(e) {
1098 e.preventDefault();
1099 var quote_comment_html ='';
1100 if($(this).attr('data-id')!=undefined && $(this).attr('data-id')!='')
1101 {
1102 $('#parent_comment_id').val($(this).attr('data-id'));
1103 quote_comment_html = $('#comment_html_'+$(this).attr('data-id')).html();
1104 }
1105 quote_comment_html = cz_br2nl(quote_comment_html);
1106 $('#comment_html_box').val('"'+quote_comment_html+'"\n\n');
1107 var comment_box_top = $('.cz-post-comment-wrapp').offset().top;
1108 $("html, body").animate({ scrollTop: comment_box_top-100 }, 600);
1109 $('#comment_html_box').focus();
1110 });
1111
1112 });
1113
1114 function editForm(cid)
1115 {
1116
1117 $.ajax({
1118
1119 type: "GET",
1120 url: window.location.href+"?sa=1",
1121 data: { f: "e", cid: cid },
1122 success: function(data) {
1123 $('.cz-post-comment-wrapp').html(data);
1124 validate_comment_box_not_empty();
1125 }
1126
1127 });
1128
1129 var comment_box_top = $('.cz-post-comment-wrapp').offset().top;
1130 $("html, body").animate({ scrollTop: comment_box_top-100 }, 600);
1131
1132 }
1133
1134 $(document).on('click', '.cz-subscribe-button' , function(e) {
1135 e.preventDefault();
1136
1137 $.ajax({
1138
1139 type: "POST",
1140 url: window.location.href,
1141 data: { a: 'sub' },
1142 success: function(data) {
1143 if(data == '1')
1144 $( "li.cz-subscribe-button" ).replaceWith( '<li aria-label="Unsubscribe from comments" title="Unsubscribe from comments" class="cz-unsubscribe-button"><a href="#"></a></li>');
1145 }
1146
1147 });
1148 });
1149
1150 $(document).on('click', '.cz-unsubscribe-button' , function(e) {
1151 e.preventDefault();
1152
1153 $.ajax({
1154
1155 type: "POST",
1156 url: window.location.href,
1157 data: { a: 'unsub' },
1158 success: function(data) {
1159 if(data == '1')
1160 $( "li.cz-unsubscribe-button" ).replaceWith( '<li aria-label="Subscribe to comments" title="Subscribe to comments" class="cz-subscribe-button"><a href="#"></a></li>');
1161 }
1162
1163 });
1164
1165 });
1166 </script>
1167 <script type="text/javascript">
1168 $('.cz-print-icon, .cz-lg-print-icon').click(function(e) {
1169 e.preventDefault();
1170 var divToPrint = document.getElementById('.article_section');
1171 var mywindow = window.open('','','left=0,top=0,width=950,height=600,toolbar=0,scrollbars=0,status=0,addressbar=0');
1172
1173 var is_chrome = Boolean(mywindow.chrome);
1174 mywindow.document.write($( ".article_section" ).html());
1175 mywindow.document.close(); // necessary for IE >= 10 and necessary before onload for chrome
1176
1177 if (is_chrome) {
1178 mywindow.onload = function() { // wait until all resources loaded
1179 mywindow.focus(); // necessary for IE >= 10
1180 mywindow.print(); // change window to mywindow
1181 mywindow.close();// change window to mywindow
1182 };
1183 }
1184 else {
1185 mywindow.document.close(); // necessary for IE >= 10
1186 mywindow.focus(); // necessary for IE >= 10
1187 mywindow.print();
1188 mywindow.close();
1189 }
1190
1191 return true;
1192 });
1193 </script>
1194 <script type="text/javascript">
1195
1196 var loginhash = '880ea6a14ea49e853634fbdc5015a024';
1197 var main_nav_hide_flag = true;
1198 var scrollTop =0;
1199 var main_nav_hide_timer = '';
1200
1201 function call_main_nav_hide()
1202 {
1203 if(main_nav_hide_flag && scrollTop >=100)
1204 {
1205 $('header').addClass("nav-up");
1206 }
1207 }
1208 var cz_header_pos = $('header').offset().top;
1209 $(window).scroll(function() {
1210 $('header').each(function(){
1211 var cz_top_of_window = $(window).scrollTop()-100;
1212 if (cz_top_of_window > cz_header_pos) {
1213 $('.bc_goto_top').fadeIn("slow");
1214 } else {
1215 $('.bc_goto_top').fadeOut("slow");
1216 }
1217 });
1218
1219 });
1220 var prevScrollTop = 0;
1221 $(window).scroll(function(event){
1222 scrollTop = $(this).scrollTop();
1223
1224 if ( scrollTop < 0 ) {
1225 scrollTop = 0;
1226 }
1227 if ( scrollTop > $('body').height() - $(window).height() ) {
1228 scrollTop = $('body').height() - $(window).height();
1229 }
1230
1231 if (scrollTop >= prevScrollTop && scrollTop) {
1232 $('header').addClass("nav-up");
1233 } else {
1234 if (scrollTop >=100)
1235 {
1236 $('header').removeClass("nav-up");
1237 main_nav_hide_timer = setTimeout("call_main_nav_hide()",5000);
1238 }
1239 else
1240 {
1241 $('header').removeClass("nav-up");
1242 clearInterval(main_nav_hide_timer);
1243 }
1244 }
1245
1246 prevScrollTop = scrollTop;
1247 });
1248 $(document).ready(function(){
1249 var bLazy = new Blazy();
1250
1251 $(".bc_dropdown a").mouseenter(function(e) {
1252 $(this).parent('.bc_dropdown').delay(250).queue(function(){
1253 $(this).addClass('show_menu').dequeue();
1254 bLazy.revalidate();
1255 });
1256 main_nav_hide_flag = false;
1257 });
1258 $(".bc_dropdown").mouseleave(function(e) {
1259 $(".bc_dropdown").clearQueue().stop().removeClass('show_menu');
1260 main_nav_hide_flag = true;
1261 if (scrollTop >=100)
1262 {
1263 main_nav_hide_timer = setTimeout("call_main_nav_hide()",5000);
1264 }
1265 });
1266 $('.bc_dropdown a').each(function(){
1267 if($(this).is(":hover"))
1268 {
1269 $(this).mouseenter();
1270 }
1271 });
1272 $('#bc_drop_tab a').hover(function (e) {
1273 e.preventDefault()
1274 $(this).tab('show')
1275 bLazy.revalidate();
1276 });
1277
1278 $('#more_dd').click(function (e) {
1279 e.preventDefault()
1280 });
1281
1282 $('.bc_goto_top a').click(function(){
1283 $("html, body").animate({ scrollTop: 0 }, 600);
1284 return false;
1285 });
1286 jQuery('.bc_login_btn').on('click', function() {
1287 jQuery('.bc_popup').fadeIn("slow");
1288 $('#ips_username').focus();
1289 });
1290 jQuery('.bc_popup_close').on('click', function() {
1291 jQuery('.bc_popup').fadeOut("slow");
1292 });
1293
1294
1295 });
1296
1297 $(document).mouseup(function (e)
1298 {
1299 var container = $(".bc_login_form");
1300
1301 if (!container.is(e.target) // if the target of the click isn't the container...
1302 && container.has(e.target).length === 0 && $('.bc_popup').css('display') =='block') // ... nor a descendant of the container
1303 {
1304 jQuery('.bc_popup').fadeOut("slow");
1305 }
1306 });
1307 if($(window).width() < 767)
1308 {
1309 $(".nav-menu").on('click','li', function(){
1310 $(this).toggleClass('active').siblings().removeClass('active');
1311
1312 })
1313 }
1314 </script>
1315 <section class="cz-popup">
1316 <div class="cz-popup-wrapp">
1317 <a class="cz-popup-close" href="javascript:;" title="Close"> <i aria-hidden="true" title="Times reported" class="fa fa-times"></i> </a>
1318 <h4>Reporter</h4>
1319 <div class="cz-popup-inner-wrapp">
1320 <h6>Help us understand the problem. What is going on with this comment?</h6>
1321 <form>
1322 <input type="hidden" id="comment-id-report" value="0">
1323 <ul>
1324 <li>
1325 <label><input type="radio" name="comment-report-reason" value="Spam">Spam</label>
1326 </li>
1327 <li>
1328 <label><input type="radio" name="comment-report-reason" value="Abusive or Harmful">Abusive or Harmful</label>
1329 </li>
1330 <li>
1331 <label><input type="radio" name="comment-report-reason" value="Inappropriate content">Inappropriate content</label>
1332 </li>
1333 <li>
1334 <label><input type="radio" name="comment-report-reason" value="Strong language">Strong language</label>
1335 </li>
1336 <li>
1337 <label><input type="radio" name="comment-report-reason" value="Other">Other</label>
1338 </li>
1339 <li id="comment-report-other-reason-wrap" style="display:none;">
1340 <textarea aria-label="Enter other reason for reporting the comment" rows="2" cols="2" id="comment-report-other-reason"></textarea>
1341 </li>
1342 </ul>
1343 <p>Read our <a href="https://www.bleepingcomputer.com/posting-guidelines/">posting guidelinese</a> to learn what content is prohibited.</p>
1344 </form>
1345 </div>
1346 <div class="cz-popup-bottom-wrapp">
1347 <div class="cz-popup-report-submiting" style="display:none;">Submitting...</div>
1348 <a href="#" title="Submit" class="cz-next-btn comment-report-submit-btn">SUBMIT</a>
1349 </div>
1350 </div>
1351 </section>
1352 <noscript id="deferred-styles">
1353
1354 <link rel="stylesheet" href="https://www.bleepstatic.com/js/redesign/fancybox/jquery.fancybox.css" type="text/css" media="screen" />
1355 <link href="https://www.bleepstatic.com/redesign/fontawesome6/css/fontawesome.min.css" rel="stylesheet" type="text/css" media="all">
1356 <link href="https://www.bleepstatic.com/redesign/fontawesome6/css/brands.min.css" rel="stylesheet" type="text/css" media="all">
1357 <link href="https://www.bleepstatic.com/redesign/fontawesome6/css/solid.min.css" rel="stylesheet" type="text/css" media="all">
1358 </noscript>
1359 <script>
1360 var loadDeferredStyles = function() {
1361 var addStylesNode = document.getElementById("deferred-styles");
1362 var replacement = document.createElement("div");
1363 replacement.innerHTML = addStylesNode.textContent;
1364 document.body.appendChild(replacement)
1365 addStylesNode.parentElement.removeChild(addStylesNode);
1366 };
1367 var raf = requestAnimationFrame || mozRequestAnimationFrame ||
1368 webkitRequestAnimationFrame || msRequestAnimationFrame;
1369 if (raf) raf(function() { window.setTimeout(loadDeferredStyles, 0); });
1370 else window.addEventListener('load', loadDeferredStyles);
1371 </script>
1372 <script type="text/javascript" async src="//s9.addthis.com/js/300/addthis_widget.js#pubid=ra-561517d2c7f964d6&domready=1"></script>
1373 </body>
1374