{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreignc325bqpppw7m2mjwcqw5kcowatq4irpqx5iuormgoipf6pvkpa",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mmh4ywbvi232"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreib6zy6fioi4jrroxs3b6ijt32i4my7ijz2surqmpfgqozvonme3ia"
    },
    "mimeType": "image/jpeg",
    "size": 370850
  },
  "path": "/2026/05/megalodon-github-attack-targets-5561.html",
  "publishedAt": "2026-05-22T11:55:24.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories within a six-hour window.\n\n\"Using throwaway accounts and forged author identities (build-bot, auto-ci, ci-bot, pipeline-bot), the attacker injected GitHub Actions workflows containing base64-encoded bash payloads that exfiltrate CI",
  "title": "Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows"
}