GitHub comments abused to push password stealing malware masked as fixes GitHub comments abused to push password stealing malware masked as fixes GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. [...] Read More September 1, 2024 GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. […] Read More About The Author Read moreBuilding cyber skills and roles from CyBOK foundations See author's posts Related Post navigation Previous: North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day ExploitNext: Cicada3301 ransomware’s Linux encryptor targets VMware ESXi systems Related Stories RondoDox Exploits Unpatched XWiki Servers to Pull More Devices Into Its Botnet Security Aid November 15, 2025 0 Five U.S. Citizens Plead Guilty to Helping North Korean IT Workers Infiltrate 136 Companies Security Aid November 15, 2025 0 DOJ lauds series of gains against North Korean IT worker scheme, crypto thefts Security Aid November 14, 2025 0
