Check Point uncovers crypto-stealing malware campaign abusing GitHub, YouTube, and VirusTotal
By
Sinisa Markovic
Summary
A cybercriminal campaign discovered by Check Point researchers used fake GitHub activity (stars, reviews), YouTube tutorials, and manipulated VirusTotal comments to distribute cryptocurrency-stealing malware. The malware was disguised as crypto sniper bots and gambling "predictors" that promised quick profits but instead stole cryptocurrency from victims. The attackers leveraged social proof and platform trust to make malicious tools appear legitimate.
Source
Key quotes
· 3 pulledThe attackers packaged the malware as tools designed to help users make money.
The offerings included cryptocurrency sniper bots and gambling 'predictors' that claimed to identify winning opportunities before other traders or forecast the outcome of online betting games.
Instead of quick profits, the tools delivered malware that stole cryptocurrency from victims.
You might also wanna read
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses
Scammers Exploit Social Media to Promote Fake Online Gaming Sites
Fraudsters are using social media platforms like Discord to promote fake online gaming and wagering websites, luring users with free credits
How an Exposed .git Folder Revealed a Phishing Campaign's Operations
A cybersecurity researcher details how an exposed .git folder on a phishing website allowed them to uncover and dox an entire phishing campa
Nx Build Kit Security Breach: Malware Steals Wallets and Credentials via GitHub Repositories
A security breach has been discovered in the popular Nx build kit where malicious post-install commands create unauthorized repositories nam
Supply Chain Attacks on Open-Source Software: Case Study of Malicious Pull Request Attempts
The article discusses recent supply chain attacks on open-source software projects like LiteLLM and axios, with a specific case study of att

Comments
Sign in to join the conversation.
No comments yet. Be the first.