AinarG
daniel:// stenberg://Beware, there is an ongoing spambot attack in #GitHub issues in several projects were random people suggest "the fix" is to download a random file from mediafire.com. Like this:
Björn Fahller@bagder ah, I got one of those. It seemed to be of low enough priority to safely ignore for the moment, but I now know to ignore it forever. Thanks.
Dec [{(
)}]@bjorn_fahller @bagder
Or you could report them as you see them.
https://mastodon.social/@jingus/113038599504964233
Or you could report them as you see them.
https://mastodon.social/@jingus/113038599504964233
Bruno Philipe@bagder mediafire dot com? that's a name I haven't heard in a long long time
FlohEinstein@brunoph missed chance for a StarWars meme.
Harry Sintonen@bagder The win64.exe in the archive https://www.virustotal.com/gui/file/4d9062af3c5107330abb1368207051eff02b0c60098a5a2670ad3d46ce51b1fc
Pavle
Lorry@harrysintonen @bagder look at all those engines that didn't spot it though!
Philip Kaludercic@bagder Does GitHub really not have any other way to mark comments but as "Abuse"?
Richard Hughes@bagder we got this in fwupd too!
Özkan Pakdil@bagder finally they have arrived to GitHub 
Norm Tovey-Walsh@bagder I got one of those this morning, but GitHub seems to have yanked it away between the time that I got the email notification and when I "WTAF?" navigated my way to the issue page.
Dentaku (Thomas Renger)@bagder Also had one of those yesterday.
Deltablot@bagder Got it too on my repo. Downloaded it for science. It contains an exe with some dll.
The "FastRsync.dll" lib makes me think this tool will suck crypto and secrets out of your computer, fast.
Jack@bagder just encountered that last guy lol. Reporting them does seem to get them banned pretty quick. I reported two and they were both banned within about 10 minutes.
cocolinofan
Roxedus 
@bagder this has been happening all week. I've had to limit interactions on a org with 300 repos, because the bots keep triggering each other with activity
C-richa chorus of voices slightly offset from each other but numerous
"to fix your trouble..."
grinI tried to install the fix but I seem to be required to install Wine for it. Is there some project helping me install windows malware faster on linux? 😆
draeath@grin I know you are joking but be careful. I have heard of malware that can actually function when run via Wine.
@draeath True. The joke was actually "I have to install Wine for the malware" since I don't have it. It's like the joke about <SMALL_POOR_NATION> virus: "I am a virus from <S_P_N>, we're too poor to write the infection part so please copy me everywhere and delete some files".
If we're serious then I would actually use a VM with windows on it, with no active network devices, since Wine is not very contained.
Christ van Willegen@grin
Sure! Let me find a link to it...
Sure! Let me find a link to it...
Melroy van den Berg@bagder I also got those comments, with random comments saying to download a binary from Dropbox..!
gudenau@bagder This seems like a trivial pattern for Microsoft to nuke, but that's not a great sign.
Luna Lactea@bagder mediafire.com my behated💔
Nothing good has ever come out of that website
Nothing good has ever come out of that website
lsxæøå@bagder seen this across repos and orgs the last week as well. Just
Report, use moderation (sad) or?
Report, use moderation (sad) or?
Benny Powers 🇮🇱🦁@bagder blocked a dozen of so of these the last two days
Gee, the move to microsoft and port to React sure are improving things!
Gee, the move to microsoft and port to React sure are improving things!
Harrison Totty@bagder Has some serious "miley-cyrus-new-album.bat" vibes
Randy@bagder I grabbed the the file hosted on MediaFire. It is a Lumma Stealer per Triage.
Shafik Yaghmour@bagder I saw these start to pop-up in llvm issues yesterday.
It is troubling to see it is more widespread.
MaybeMyMonkeys@bagder the answer is never download a file from a file hosting site
RevK 
@bagder Ah, yes, say that and was puzzled by it.
Shadow06@bagder lol this is hilarious.
More people need to explore other platforms for hosting their code. Something a little more self-sovereign.
sudokill@bagder
you can use codeberg instead of github.
There is a low probability to find spammer and hacker 👍
you can use codeberg instead of github.
There is a low probability to find spammer and hacker 👍
Emily@bagder I saw one of these with a link to Dropbox. Dropbox took the link down before I even saw the comment and the comment was removed very shortly after