Researchers have discovered a complex campaign using GitHub’s infrastructure to spread the Lumma Stealer malware. This malware steals sensitive data and deploys additional hostile payloads. It hides in GitHub repositories disguised as legitimate software, and the attackers lure users into downloading these malicious files. Once active, they pose significant risks by stealing credentials, browser data, and crypto wallets, among other things. The researchers suggest validating URLs and digital certificates, using endpoint security solutions, and regularly patching systems to protect against such threats.
Hackers use fake wedding invitations to spread Android malware in Southeast Asia
Cybercriminals are using fake wedding invitations to spread an Android malware called Tria, primarily targeting users in Malaysia and Brunei. The malware, distributed via private
