New PyStoreRAT Malware Targets OSINT Researchers Through GitHub

A new malware called PyStoreRAT is being through fake OSINT tools on GitHub targeting IT and OSINT pros. Read Morphisec’s report detailing how it uses AI and evades security.

A coordinated and new malware campaign is exploiting the popular developer platform, GitHub. The target? Professionals in IT administration, cybersecurity, and open-source intelligence (OSINT). This is according to a detailed research report by Morphisec Threat Labs on a previously unknown threat, dubbed PyStoreRAT.

For your information, PyStoreRAT is a Remote Access Trojan, which is a type of malicious program that gives an attacker secret, long-term control over a victim’s computer. Researchers observed that this campaign is different because it involves careful planning and uses tools created by Artificial Intelligence (AI) to appear legitimate.

The AI-Assisted Supply Chain Attack

The preemptive cyber defence firm Morphisec’s investigation revealed that the attackers’ smart strategy began over the last several months by ...