Search
START TYPING AND PRESS ENTER TO SEARCH
Blog

Checkmarx: Attackers Hijacking GitHub Ratings to ‘Infect As Many Targets As Possible

Cybersecurity company Checkmarx said it has discovered that hackers can effectively hijack GitHub’s star ratings of open-source products to trick developers into downloading malicious code. In a blog post, Checkmarx’s Tzachi “Zack” Zornstein and Aviad Gershon warn that the entire cyber-scam, which they’re calling “StarJacking,” ultimately relies upon the credibility that many people attach to star-rating systems for various products. The more popular a product, some people reason, the better the product.
Facebook
Linkedin
Twitter
Youtube
Envelope
Facebook Linkedin Twitter Youtube Envelope
About the Author
Editor

Editor

See All Blogs >
Editor

Editor

See All Blogs >
About the Author

More Resources to Consider

From Zero to AppSec Anti-Hero: How AI Brings More Security Issues Than It Fixes
March 17, 2023
CocoaPods Subdomain Hijacked: This is How
March 2, 2023
How NPM Packages Were Used to Spread Phishing Links
February 21, 2023
Securing Open-Source Solutions: A Study of osTicket Vulnerabilities
February 14, 2023
Checkmarx is constantly pushing the boundaries of Application Security Testing to make security seamless and simple for the world’s developers and security teams. As the AppSec testing leader, we deliver the unparalleled accuracy, coverage, visibility, and guidance our customers need to build tomorrow’s software securely and at speed.
ABOUT CHECKMARX
REQUEST A DEMO
CAREERS WITH US
Solutions
Industry
Solutions For
Services
Partners
Company
Resources
Community
Linkedin Twitter Youtube Facebook

Terms of Use | Checkmarx Privacy Policy | Checkmarx.com Cookie Policy

©2023 Checkmarx Ltd. All Rights Reserved. iISO/IEC 27001:2013 Certified

Skip to content