Apparently there’s a bunch of projects getting hit with this, fairly obscure ones though. Project gets forked, suddenly get a pile of stars more than the original, and then there’s a curl-bash pipe inserted into it that runs some ransomeware that encrypts ~/Documents.
About a dozen other projects linked in here from another developer (excuse the Reddit link): https://old.reddit.com/r/golang/comments/1jbzuot/someone_copied_our_github_project_made_it_look/
Yay, finally Linux is being attacked!
And as expected it takes whole lot more than clicking on an email attachment
Always check before you curl download something!
No. Feel free to download shit and even attempt to run shit. Chances are they won’t run because shits are compiled against glibc and my system is not.