Malicious Go modules that completely wipe out your disk
a year ago
- #Go
- #Typosquatting
- #Security
- Malicious Go modules identified by Socket can wipe a computer's hard drive.
- Go is a popular programming language known for concurrency and performance.
- The Go ecosystem lacks a central authority to vet modules, making it vulnerable to typosquatting.
- Three malicious Go modules were found using obfuscated code to hide harmful actions.
- The modules used array-based string obfuscation to reconstruct commands dynamically.
- The malicious code targeted Linux systems, executing commands to download and run harmful scripts.
- The scripts overwrote the hard drive with zeros, making data recovery impossible.
- Developers should verify dependencies, check source code, and use automated scanning tools to prevent such attacks.