Stargazer Goblin
 | This article is an orphan, as no other articles link to it. Please introduce links to this page from related articles; try the Find link tool for suggestions. (October 2024) |
Stargazer Goblin is a threat actor (since August 2022) which operate a network (over 3.000 inauthentic GitHub accounts) known as Stargazers Ghost Network that distribute malware (ransomware, infostealers) such as: Atlantida Stealer, Rhadamanthys, and share malicious links.[1][2][3][4][5] It acts as a Distribution as a Service (DaaS).[6][7][8][9]
References
[edit]- ^ https://thehackernews.com/2024/07/stargazer-goblin-creates-3000-fake.html%7C
- ^ Burgess, Matt. "A Hacker 'Ghost' Network Is Quietly Spreading Malware on GitHub" – via www.wired.com.
- ^ Ezenwa, Eric. "How 'Stargazer Goblin' leveraged GitHub for large-scale malware attacks". Interesting Engineering.
- ^ Horwood, Penny. "Malicious 'ghost' DaaS network spreading malware through GitHub". www.computing.co.uk.
- ^ "Stargazers Ghost: $100K GitHub Malware Network Exposed". July 29, 2024.
- ^ "Threat Actor Stargazer Goblin Uses Over 3,000 GitHub Accounts for Malware Distribution - CPO Magazine".
- ^ ""'Stargazer Goblin' Amasses Rogue GitHub Accounts to Spread Malware" | Science of Security Virtual Organization". sosvo-staging.isis.vanderbilt.edu.
- ^ "Network of 3,000 GitHub Accounts Used for Malware Distribution - SecurityWeek".
- ^ "3,000 "ghost accounts" on GitHub spreading malware".
 | This article about a criminal organization is a stub. You can help Wikipedia by expanding it. |