How threat actors are using self-hosted GitHub Actions runners as backdoors | Sysdig
www.sysdig.com
Using Shai-Hulud as a case study, explore how attackers can abuse GitHub's self-hosted runner infrastructure to establish persistent remote access.