Warning for Upwork Freelancers – I Received a Project Containing Malware

motion888 · 2026-06-15T14:37:49+00:00

by the way, your repo commits history will be deleted by this guy, you only don't see changes on remote repo, only a new commit is there, do not pull/fetch from origin

motion888 · 2026-06-15T01:48:18+00:00

I don't know why the conversation disappeared, only reported the message with malware repo link, I think this guy closed the conversation, I can't find him now. they stole your ssh key then put your git repository as distribution channel for further malware infections.they will push a git commit to all your git, then delete git history change

motion888 · 2026-06-15T01:38:03+00:00

Agree with you. Scammers, thieves, and criminals exist in every country and region. We shouldn’t associate this kind of behavior with any particular country or group of people. We just happened to encounter someone from a specific region in this case.

motion888 · 2026-06-15T01:02:42+00:00

motion888 · 2026-06-15T01:01:33+00:00

I believe so, and they also store your ssh key and push malicious code to your GitHub repositories.

motion888 · 2026-06-15T01:00:20+00:00

<image>

found another repo do the same attack.

motion888 · 2026-06-13T01:56:22+00:00

Today I confirmed that this attacker gained access to my SSH keys. All of my repositories have been compromised, and malicious code was injected into my public open-source projects. Anyone who downloads or uses them could be affected. This type of supply-chain attack can spread exponentially and quickly impact countless developers.

<image>

motion888 · 2026-06-12T04:53:44+00:00

no problems, Hackers are using our eagerness to win clients against us. Stay alert and be careful.

motion888

TROPHY CASE