Okay, people, brace yourselves. We’ve officially entered the era where your automated systems are actively trying to steal your lunch money. It started subtly, a little hiccup in the matrix. But now? Now it’s a full-blown supply chain meltdown, and it all started with a seemingly innocuous GitHub Action called “tj-actions/changed-files.”
Initially, it looked like a targeted strike against Coinbase. A precision attack, if you will. But oh, how quickly things escalated. This wasn’t about stealing a few satoshis; it was about weaponizing the very foundations of modern software development. Unit 42 at Palo Alto Networks discovered the initial breach, and let me tell you, the rabbit hole goes deep.
The attacker didn’t just compromise “tj-actions/changed-files.” They compromised the compromiser. Turns out, another Action, “reviewdog/action-setup” – a dependency of the original – was also pwned. Think of it like a digital game of whack-a-mole, except instead of moles, it’s critical infrastructure, and instead of a mallet, it’s a highly skilled threat actor with a penchant for dangling commits. (Yes, dangling commits. This is the level of sophistication we’re dealing with.)
So, how did they do it? A stolen GitHub token, naturally. This allowed them to inject malicious code into the “changelog.yml” file of Coinbase’s “agentkit” repository, pointing to a poisoned version of “tj-actions/changed-files.” It’s like replacing the sugar in your coffee with… well, something much, much worse.
But here’s the kicker: after Coinbase detected and mitigated the initial attack, things got weird. Instead of retreating, the attacker went wide. They unleashed a mass-exploitation campaign, dumping environment variables and secrets into workflow logs, indiscriminately. Why? According to Unit 42, it appears they feared losing access to the “tj-actions/changed-files” action and decided to grab as much access as possible before the door slammed shut. It’s like a digital bank robber realizing the alarm is about to go off and just starting to throw money at everyone.
The payloads even changed during the attack, indicating a deliberate attempt to stay under the radar. This wasn’t some script kiddie; this was a seasoned operator. They even created and then deleted multiple fake GitHub accounts (“2ft2dKo28UazTZ” and “mmvojwip,” we’re looking at you) to facilitate the attack.
GitHub, predictably, downplayed the severity, stating there was no compromise of their systems. Sure, Jan. They’re like the security guard who insists everything is fine while the building is actively being robbed. They did acknowledge the issue and are reviewing things, but let’s be real: this is a wake-up call.
What does this all mean? It means your CI/CD pipeline is no longer a safe haven. It’s a potential attack vector. You need to scrutinize every dependency, every Action, every line of code. You need to assume you’ve already been compromised and act accordingly.
And for the love of all that is holy, review your third-party code. Seriously.
Now, if you’ll excuse me, I’m going to go lock down my entire infrastructure and start questioning the very nature of reality.
P.S. And a special shoutout to the attacker for demonstrating such a masterful understanding of dangling commits. It’s terrifyingly impressive.
(Sponsored by: SecureCode Solutions – because your automated builds shouldn’t be plotting against you.)
…And now, if you’ll excuse me, I’m going to go build a Faraday cage around my desk. Just in case.
The Tech Cynic – signing off, before the robots rise.
Leave a Comment
Leave a Comment