This devious phishing site repurposes legitimate web elements like CAPTCHA pages for malware distribution
The campaign employs trusted platforms such as Amazon S3 and various Content Delivery Networks (CDNs) to host phishing sites, ...
GitHub is hiding malware disguised as games, legitimate software
McAfee researchers find number of malicious GitHub repositories The repositories change every week, but always promise game ...
The Hacker News24y
Beware: Fake CAPTCHA Campaign Spreads Lumma Stealer in Multi-Industry Attacks
Fake CAPTCHA checks are spreading Lumma Stealer malware worldwide, targeting telecom, healthcare, and banking sectors ...
Digital Trends10d
Heads up — fake Reddit sites are delivering dangerous malware
Hackers are spreading a dangerous malware called Lumma Stealer by tricking you into clicking on a link in a fake Reddit thread that supposedly solves a problem, as Bleeping Computer reports.
Bleeping Computer10d
Hundreds of fake Reddit sites push Lumma Stealer malware
Hackers are distributing close to 1,000 web pages mimicking Reddit and the WeTransfer file sharing service that lead to downloading the Lumma Stealer malware. On the fake pages, the threat actor ...
techzine9d
Phishing campaign mimics CAPTCHA to spread malware
CloudSEK reveals an advanced method for spreading the Lumma Stealer malware. This is a serious threat to Windows users.
Bleeping Computer24d
Banshee stealer evades detection using Apple XProtect encryption algo
The same operators also target Windows users, but with Lumma Stealer. Check Point reports that while the Banshee malware-as-a-service operation has remained down since November, multiple phishing ...
WeLiveSecurity2mon
Threat Reports
Among other things, the rise in cryptocurrency valuations drove bad actors to go full tilt on targeting cryptocurrencies while Lumma Stealer became a particularly hot commodity for cybercriminals ...