GitlokerGitloker

Also known as: Gitloker

Known aliases
1

Profile

Gitloker is a threat actor group targeting GitHub repositories, wiping their contents, and extorting victims for their data. They use stolen credentials to compromise accounts, claim to have created a backup, and instruct victims to contact them on Telegram. The attackers leave a ransom note in the form of a README file, urging victims to negotiate the return of their data. GitHub is working to combat these evolving attacks and the vulnerabilities they exploit.

Aliases· 1

Gitloker

References

  1. https://www.itsecurityguru.org/2024/06/13/guest-blog-proactive-application-security-learning-from-the-recent-github-extortion-campaigns/
  2. https://www.bleepingcomputer.com/news/security/new-gitloker-attacks-wipe-github-repos-in-extortion-scheme/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
TridentLocker
Actor
Stargazer Goblin
Actor
Nullbulge
Actor
GhostR
Actor
JuiceLedger
Actor
TRIPLESTRENGTH
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.