Crypto Clipper Malware Abuses GitHub & Fake Reviews
🟡 Medium | Source: The Hacker News A threat actor is running a crypto clipper malware campaign using fake reviews on legitimate news sites, AI-generated YouTube content, and GitHub/SourceForge projects to lend credibility to malicious software. The campaign uses a WordPress phishing hub and VirusTotal comment sections to spread links, targeting users into downloading malware that silently replaces cryptocurrency wallet addresses to redirect funds. This matters because it abuses trusted platforms to evade detection and build false legitimacy. ...