MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
github
Search

Over 3.1 Million Fake 'Stars' on GitHub Projects Used To Boost Rankings

Tuesday December 31, 2024. 06:27 PM , from Slashdot
Over 3.1 Million Fake 'Stars' on GitHub Projects Used To Boost Rankings
Researchers have uncovered widespread manipulation of GitHub's star-rating system, with over 3.1 million fraudulent stars identified across 15,835 repositories, according to a new study by Socket, Carnegie Mellon University, and North Carolina State University.

The research team analyzed 20TB of data from GHArchive, spanning 6 billion GitHub events from 2019 to 2024, using their 'StarScout' detection tool. The tool identified 278,000 accounts engaging in coordinated inauthentic behavior to artificially boost repository rankings.

GitHub uses stars, similar to social media likes, to rank projects and recommend content to users. The platform has previously encountered malicious exploitation of this system, including the 'Stargazers Ghost Network' malware operation discovered last summer. Approximately 91% of flagged repositories and 62% of suspicious accounts were removed by October 2024.

Read more of this story at Slashdot.
Read more at Slashdot
https://developers.slashdot.org/story/24/12/31/1726239/over-31-million-fake-stars-on-github-projects...

Related News

github Apple agrees to $95 million payouts to settle lawsuit alleging Siri recorded private conversations BetaNewsJan 3
projects Siri 'Unintentionally' Recorded Private Convos; Apple Agrees To Pay $95 Million SlashdotJan 2
over Health AI: How Apple can boost public health ComputerWorldJan 2
rankings Students Overpaid Elite Colleges $685 Million, 'Price-Fixing' Suit Says SlashdotJan 1
boost Venezuela Issues $10 Million Fine For TikTok Over Deadly Viral Challenges SlashdotJan 1
million 10 Million Trees To Be Planted in US To Replace Ones Destroyed By Hurricanes SlashdotDec 31
university Science YouTuber makes fake butter for popcorn BoingBoingDec 30
accounts Nvidia Open-Sources Run:ai, the Software It Acquired For $700 Million SlashdotDec 30
identified What Happens to Relicensed Open Source Projects and Their Forks? SlashdotDec 28
system Lyft Says San Francisco Overcharged It $100 Million In Taxes SlashdotDec 28
repositories A Fake Nintendo Lawyer is Scaring YouTubers SlashdotDec 27
used Chinese Firm Trains Massive AI Model for Just $5.5 Million SlashdotDec 27
stars Health Care Giant Ascension Says 5.6 Million Patients Affected In Cyberattack SlashdotDec 24
fake Microsoft Integrates a Free Version of Its 'Copilot' Coding AI Into GitHub, VS Code SlashdotDec 21
'stars' Father of 2 young boys loses $5 million after falling for terrifying new Google scam BoingBoingDec 21
github Fossilized "alien plant" from 47 million years ago unlike anything alive today BoingBoingDec 20
projects Million GPU clusters, gigawatts of power – the scale of AI defies logic TheRegisterDec 19
over GitHub launches free tier of Copilot AI coding assistant InfoWorldDec 18
rankings AI Chip Startup Tenstorrent Raises $700 Million, Eyes NVIDIA’s Market Share eWeekDec 18
boost Nebraska Sues UnitedHealth Unit Over 100 Million Patient Data Breach SlashdotDec 18
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Jan, Sat 4 - 10:43 CET