- Researchers discover Golssue – a new tool for extracting emails from GitHub users
- It sells for $700 on the dark web
- Such a highly accurate instrument could lead to dangerous attacks on the supply chain
According to SlashNext, GitHub users are reportedly being targeted by a brand new phishing campaign.
The company recently published a article titled “GoIssue – The Tool Behind Recent GitHub Phishing Attacks,” which describes the tool, which, as the headline suggests, appears to have already been deployed.
However, the body of the article mainly discusses its potential risks and the ways in which it can be used to enable targeted phishing campaigns and other cyber attacks. It outlines the features of GoIssue and how attackers “might” use it to attack GitHub users, presenting hypothetical scenarios rather than confirming specific incidents where the tool has been deployed.
Discount for early adopters
Regardless, Golssue is definitely an advanced hacking tool, and GitHub users should be wary.
SlashNext claims that Golssue can grab email addresses from public GitHub profiles and send bulk emails directly to people’s inboxes. This allows crooks to craft highly targeted, persuasive phishing emails, which can result in GitHub users losing access to their profiles or projects being compromised with malware in supply chain attacks.
“Whether you want to reach a specific audience or expand your reach, GoIssue provides the precision and power you need,” Golssue’s developer, a threat actor called “cyberdluffy,” said in an ad on the dark web.
To purchase a customized version of the tool, you will have to pay $700. Access to the source code can also be obtained, but for $3,000. The HackerNews found on October 11, the developer dropped the prices to $150 and $1,000 respectively – for the first five customers. We can therefore assume that no group has used it yet.
GitHub is a web-based platform that provides version control and collaboration features for software development projects. It is extremely popular and therefore often targeted by various criminal groups.
Via SlashNext