Attackers Create Synthetic Security Researchers to Steal IP

An unknown threat group created a GitHub repository containing malicious code, disguised as a zero-day exploit for the Signal messaging app, according to VulnCheck. The group created a fake cybersecurity firm, High Sierra Cyber Security, and linked it to a number of fictitious security researchers to lend credibility to the exploit. Once discovered, the GitHub page was removed, but the group continued to create new pages offering other exploits. The operation reportedly represents a significant step up in complexity and sophistication from previous attacks of this kind.