Hackers Get Hacked: Game Cheaters and Amateur Cybercriminals Fall for Backdoored Repositories

Cybercriminals beware: even you can catch a case of malware by using dodgy open source repositories, Sophos reveals. Game cheaters and novice hackers are the latest targets in a backdoor bonanza on GitHub, proving that crime doesn’t pay—it just bugs. Remember, always check your sources, or you’ll find yourself pwned!

3P
Published: June 5, 2025 1:40 pmAdded: June 5, 2025 at 7:02 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Cybercriminals getting a taste of their own medicine? Now that’s a plot twist worthy of a cybersecurity thriller! It seems even the bad guys need to double-check their open-source downloads or risk getting their own systems infected. Maybe crime does pay…in malware infections!

Key Points:

  • Sophos discovered a campaign targeting game cheaters and amateur cybercriminals using backdoored GitHub repositories.
  • The malicious campaign includes four types of backdoors: PreBuild, Python, screensaver, and JavaScript.
  • The threat actor behind these attacks has created over a hundred backdoored projects, potentially as part of a DaaS operation.
  • The campaign is being advertised on Russian cybercrime forums, but the exact culprits remain elusive.
  • Repositories often contained the email ‘ischhfd83’ and had numerous commits, suggesting a widespread effort.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?