Password stealer now spreading from a GitHub link that uses NFT as bait


    Researchers have found a new campaign to spread the RedLine Stealer, a low-cost password stealer sold on underground forums, through a series of YouTube videos that take advantage of the worldwide interest in NFTs.

    The hook is the promise of a bot that will buy Binance NFT Mystery Boxes automatically when they become available. But the bot is a fake. Gustavo Palazolo, a malware analyst at Netskope Threat Labs, says that the video descriptions on the YouTube pages trick people into downloading RedLine Stealer from a GitHub link.


    Please enter your comment!
    Please enter your name here