GitHub comments abused to push password stealing malware masked as fixes
September 1, 2024 at 09:08AM GitHub is being misused to distribute the Lumma Stealer information-stealing malware through fake fixes shared in project comments. Based on the meeting notes, it seems that GitHub is being misused to distribute the Lumma Stealer malware by posting fake fixes as project comments. This is a serious security concern that … Read more