Beware Weaponized YouTube Channels Spreading Lumma Stealer

Attackers are using popular YouTube channels to spread a variant of Lumma Stealer malware disguised as tutorials for cracked software. The malware is being disseminated via open-source platforms like GitHub and MediaFire. The phishing manoeuvre prompts users to download a malicious .ZIP file embedded in video descriptions. The malware steals sensitive information, including user credentials and other data. Cybersecurity firm Fortinet stated the attacks are increasing and advised users to download applications only from secure and reputable sources.