GitHub abused to distribute payloads on behalf of malware-as-a-service
The repository offered the MaaS a distribution channel not blocked in many networks.
Dan Goodin
–
|
2
Dan Goodin
Senior Security Editor
[email protected]
Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords. A journalist with more than 25 years experience, he has been chronicling the exploits of white-hat, grey-hat and black-hat hackers since 2005 as a reporter for the Associated Press and later, The Register. He has a Bachelors Degree in English from the University of Massachusetts and a Masters of Journalism from UC Berkeley. In his spare time, he enjoys gardening, cooking, and following the independent music scene. Based in San Francisco, Dan can receive encrypted messages over Signal at DanArs.82. You can find him on Mastodon at here and on Bluesky at here.
Recent stories by
Dan Goodin
Google finds custom backdoor being installed on SonicWall network devices
Overstep backdoor nukes key log entries, making detection hard.
Dan Goodin
–
|
24
Hackers exploit a blind spot by hiding malware inside DNS records
Technique transforms the Internet DNS into an unconventional file storage system.
Dan Goodin
–
|
66
Nvidia chips become the first GPUs to fall to Rowhammer bit-flip attacks
GPUhammer is the first to flip bits in onboard GPU memory. It likely won't be the last.
Dan Goodin
–
|
52
Pro basketball player and 4 youths arrested in connection to ransomware crimes
Suspects were allegedly involved in a string of ransomware breaches.
Dan Goodin
–
|
19
Browser extensions turn nearly 1 million browsers into website-scraping bots
Extensions load unknown sites into invisible Windows. What could go wrong?
Dan Goodin
–
|
57
Critical CitrixBleed 2 vulnerability has been under active exploit for weeks
Exploits allow hackers to bypass 2FA and commandeer vulnerable devices.
Dan Goodin
–
|
37
Unless users take action, Android will let Gemini access third-party apps
Important changes to Android devices took effect starting Monday.
Dan Goodin
–
|
217
Most Read
Provider of covert surveillance app spills passwords for 62,000 users
Creators say app is intended for parental monitoring. So why the emphasis on stealth?
Dan Goodin
–
|
83
AT&T rolls out Wireless Account Lock protection to curb the SIM-swap scourge
Move is aimed at curbing a form of abuse that costs subscribers dearly.
Dan Goodin
–
|
61
US critical infrastructure exposed as feds warn of possible attacks from Iran
Agencies warn that some US targets may be needlessly exposed.
Dan Goodin
–
|
75
Drug cartel hacked FBI official’s phone to track and kill informants, report says
Official was connected to FBI probe of cartel kingpin Joaquín “El Chapo” Guzmán.
Dan Goodin
–
|
53
Actively exploited vulnerability gives extraordinary control over server fleets
AMI MegaRAC used in servers from AMD, ARM, Fujitsu, Gigabyte, and Qualcomm.
Dan Goodin
–
|
46
Ubuntu disables Intel GPU security mitigations, promises 20% performance boost
Overtime defenses for Spectre-based attacks have taken their toll.
Dan Goodin
–
|
31
Canadian telecom hacked by suspected China state group
Maximum-security Cisco vulnerability was patched Oct. 2023 and exploited Feb. 2025.
Dan Goodin
–
|
53
Record DDoS pummels site with once-unimaginable 7.3Tbps of junk traffic
Attacker rained down the equivalent of 9,300 full-length HD movies in just 45 seconds.
Dan Goodin
–
|
128
Address bar shows hp.com. Browser displays scammers’ malicious text anyway.
Microsoft, Apple, Bank of America, and many more sites all targeted.
Dan Goodin
–
|
119
Cybersecurity takes a big hit in new Trump executive order
Provisions on secure software, quantum–resistant crypto, and more are scrapped.
Dan Goodin
–
|
98
Vandals cut fiber-optic lines, causing outage for Spectrum Internet subscribers
The soaring price of copper makes networks tempting targets for thieves.
Dan Goodin
–
|
105
Coming to Apple OSes: A seamless, secure way to import and export passkeys
Apple OSes will soon transfer passkeys seamlessly and securely across platforms.
Dan Goodin
–
|
85
Found in the wild: 2 Secure Boot exploits. Microsoft is patching only 1 of them.
The publicly available exploits provide a near-universal way to bypass key protections.
Dan Goodin
–
|
41
Millions of low-cost Android devices turn home networks into crime platforms
BadBox malware has been menacing low-cost Android devices for nearly a decade.
Dan Goodin
–
|
40
Two certificate authorities booted from the good graces of Chrome
Chunghwa Telecom and Netlock customers must look elsewhere for new certificates.
Dan Goodin
–
|
85
Meta and Yandex are de-anonymizing Android users’ web browsing identifiers
Abuse allows Meta and Yandex to attach persistent identifiers to detailed browsing histories.
Dan Goodin
–
|
185
Thousands of Asus routers are being hit with stealthy, persistent backdoors
Backdoor giving full administrative control can survive reboots and firmware updates.
Dan Goodin
–
|
112
Researchers cause GitLab AI developer assistant to turn safe code malicious
AI assistants can't be trusted to produce safe code.
Dan Goodin
–
|
60
Destructive malware available in NPM repo went unnoticed for 2 years
Payloads were set to spontaneously detonate on specific dates with no warning.
Dan Goodin
–
|
44
“Microsoft has simply given us no other option,” Signal says as it blocks Windows Recall
Even after its refurbishing, Recall provides few ways to exclude specific apps.
Dan Goodin
–
|
242
Windows 11’s most important new feature is post-quantum cryptography. Here’s why.
For the first time, new quantum-safe algorithms can be invoked using standard Windows APIs.
Dan Goodin
–
|
50
FBI warns of ongoing scam that uses deepfake audio to impersonate government officials
Warning comes as the use of deepfakes in the wild is rising.
Dan Goodin
–
|
72
Spies hack high-value mail servers using an exploit from yesteryear
Attacks spilled contacts and emails from targeted accounts.
Dan Goodin
–
|
32
Google introduces Advanced Protection mode for its most at-risk Android users
A single flip of a settings button enables a host of defenses against hacking.
Dan Goodin
–
|
59
New attack can steal cryptocurrency by planting false memories in AI chatbots
Malicious "context manipulation" technique causes bot to send payments to attacker's wallet.
Dan Goodin
–
|
72
DOGE software engineer’s computer infected by info-stealing malware
The presence of credentials in leaked "stealer logs" indicates his device was infected.
Dan Goodin
–
|
151
WhatsApp provides no cryptographic management for group messages
The weakness creates the possibility of an insider or hacker adding rogue members.
Dan Goodin
–
|
61
Jury orders NSO to pay $167 million for hacking WhatsApp users
The verdict is a major victory for opponents of exploit sellers.
Dan Goodin
–
|
73