Password stealer now spreading from a GitHub link that uses NFT as bait

    0
    334

    Researchers have found a new campaign to spread the RedLine Stealer, a low-cost password stealer sold on underground forums, through a series of YouTube videos that take advantage of the worldwide interest in NFTs.

    The hook is the promise of a bot that will buy Binance NFT Mystery Boxes automatically when they become available. But the bot is a fake. Gustavo Palazolo, a malware analyst at Netskope Threat Labs, says that the video descriptions on the YouTube pages trick people into downloading RedLine Stealer from a GitHub link.

    LEAVE A REPLY

    Please enter your comment!
    Please enter your name here