Zscaler’s ThreatLabz has discovered a new malware campaign called Tweaks that targets Roblox users. Using platforms like YouTube and Discord, the attackers distribute malicious files under the pretext of Frames Per Second (FPS) optimization packages. Once infected, sensitive user data, including passwords, location, Roblox IDs and in-game currency details, are exfiltrated and sent to an attacker-controlled server. Since 45% of Roblox users are under 13, there’s a risk of the malware spreading to parents’ systems and potentially infiltrating corporate devices.
New GitHub Actions Attack Chain Uses Fake CI Updates to Exfiltrate Secrets and Tokens
A new attack campaign is actively targeting open-source repositories on GitHub by carefully disguising malicious code as completely routine CI build configuration updates. The campaign,
