GitHub is hiding malware disguised as games, legitimate software
Posted by:
James Thompson
McAfee researchers have discovered a troubling trend on GitHub involving malicious repositories targeting users, particularly children, with infostealing malware. These repositories masquerade as offering game hacks or free access to popular software, but instead, deliver Lumma Stealer malware. The threat constantly evolves, changing descriptions weekly to evade detection, always maintaining the same harmful payload. Victims are led to believe the malware is safe to download by providing instructions on disabling antivirus programs. McAfee warns that the campaign has successfully infected many users, emphasizing that children are particularly vulnerable due to their interest in game hacks. The deceptive nature of these repositories and the trust associated with GitHub contribute to the effectiveness of this social engineering technique.
Recent Posts1
