Hackers are creating web pages impersonating Reddit to trick users into downloading malware onto their devices. These fake pages imitate a real Reddit thread and trick users with a download link that leads to another imitation site, resembling file-sharing service WeTransfer. The link initiates the download of the Lumma Stealer malware, an info-stealing program. To stay safe, users should avoid clicking on suspicious links, install good antivirus software and enable their browser’s built-in protection against sites known for spreading malware.
Phishing campaign mimics CAPTCHA to spread malware
Cybersecurity firm CloudSEK has disclosed malicious Windows malware Lumma Stealer’s advanced dissemination method. This technique involves imitation Google CAPTCHA verification pages on phishing websites hosted
