Replies: 0 comments
-
have the same any solution. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
have the same any solution. |
Beta Was this translation helpful? Give feedback.
-
Select Topic Area
General
Body
Dear GitHub Security Team,
I am writing to request urgent assistance in recovering my GitHub account. I believe my account has been compromised by malware downloaded from a public repository.
I cloned this repo https://github.com/LoffyNora/TikTok-ViewBot/blob/main/requirements.txt around a month ago and that contained a malware inside its requirements.txt file.
Commit history: Infected commit
Infact the malware is still present (as of writing this) in requirements.txt file. It's not only me there are couple of other accounts and repos that got compromised.
About My account:
I have been an active open-source contributor on GitHub for the past four years, with much valid libraries, and contributions.
Which itself serves the fact of my account's legibility from being a spam (Followers/count/contributions/stars). Unfortunately, I suspect I unknowingly downloaded malware from a public repository, which compromised my account.
Current Situation
My account got flagged and hidden by default. Not public anywhere.
Request for Assistance
I kindly request your assistance in recovering my account as soon as possible. I would also appreciate any guidance on securing my account and preventing future compromises.
Additional Information
Malware cleverly hidden. [https://pythanhosted.org, previously https://pypihosted.org, owned by some unauthorized person not from python foundation.]
Attachments:
Other repos:
I look forward to receiving response on my support ticket.
Beta Was this translation helpful? Give feedback.
All reactions