An alarming development places GitHub users at risk of falling prey to a
sophisticated cyber scam involving the distribution of malware through comments
on the platform.
sophisticated cyber scam involving the distribution of malware through comments
on the platform.
Threat actors have found a way to exploit GitHub’s comments feature – they’re
injecting the infamous Lumma Stealer malware through comments falsely presented
as solutions to coding issues.
Malicious Comments Spotted by Rust Library Contributor
The deception was first spotted by a contributor on the “teloxide” Rust library,
who