GitHub comments abused to push password stealing malware masked as fixes GitHub comments abused to push password stealing malware masked as fixes GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. [...] Read More September 1, 2024 GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. […] Read More About The Author Read moreBuilding cyber skills and roles from CyBOK foundations See author's posts Related Post navigation Previous: North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day ExploitNext: Cicada3301 ransomware’s Linux encryptor targets VMware ESXi systems Related Stories North Korea’s Lazarus group attacked three companies involved in drone development Security Aid October 23, 2025 New York updates third-party risk guidance, adds AI provisions Security Aid October 23, 2025 Pakistani-Linked Hacker Group Targets Indian Government Security Aid October 23, 2025
