URL has been copied successfully!
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows


Tags: , , ,

Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories within a six-hour window.”Using throwaway accounts and forged author identities (build-bot, auto-ci, ci-bot, pipeline-bot), the attacker injected GitHub Actions workflows containing base64-encoded bash payloads that exfiltrate CI

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/05/megalodon-github-attack-targets-5561.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Black Hat Europe preview: Cryptographic protocol attacks and AI in the spotlight
  2. Weaponised XWorm RAT Builder Attacking Script Kiddies To Hack 18,000 Devices
  3. How GlassWorm wormed its way back into developers’ code, and what it says about open source security
  4. From typos to takeovers: Inside the industrialization of npm supply chain attacks