Cybercriminals are utilizing YouTube to spread malware, specifically an info-stealing variant named Lumma Stealer which can extract sensitive data. Assailants take over well-known YouTube channels, add malicious content presented as cracked software or game cheats and exploit users’ trust. They further secure their tactics by using legitimate file-hosting services, password-protecting downloads and encoding to avoid early detection. Cybersecurity professionals urge individuals to avoid pirated software, verify download sources and improve their overall cybersecurity practices.

FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites
The Russian cybercrime group FIN7 is linked to a Python-based backdoor named Anubis, providing them remote access to compromised Windows systems, says Swiss cybersecurity firm