Maliciously Crafted Cracked Software Propagates Lumma Stealer via YouTube

Threat Level – Red | Vulnerability Report
Download PDF

In an attempt to deceive users into downloading the information-stealing virus Lumma, threat actors are exploiting YouTube videos featuring content related to cracked software. These videos typically include content related to the use of cracked software, accompanied by identical installation instructions. Furthermore, Lumma Stealer was recently discovered to incorporate a new feature, providing persistent Google OAuth access.

Threat Level – Red | Attack Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox