Cybernews

Fake Malwarebytes, LastPass, and dozens of other malware-containing apps found on GitHub

Cybercriminals are impersonating popular software like LastPass and Malwarebytes on GitHub, using poisoned search results and sponsored ads to trick Mac users into installing infostealers.
CSO Online

Macs go phishing as GitHub impostors drop Atomic stealer

OS users are being tricked in the ongoing campaign with fake GitHub pages that deliver the Atomic infostealer.
PCMag on MSN

Hacker Targets Mac Users Looking for LastPass Downloads on Search Engines

The password manager warns users about Google and Bing search results for LastPass and other apps that lead to GitHub pages ...

LastPass Warns Of GitHub Scam Infecting Macs

Cybercriminals are stepping up their attacks on Mac users, using fake GitHub repositories to spread malware disguised as ...
The Hacker News

LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer

Cybercriminals are using fake GitHub repositories to distribute Atomic Stealer malware disguised as trusted macOS apps like ...

Chinese malware is flooding GitHub pages - HiddenGh0st, Winos and kkRAT hit devs via SEO poisoning

Chinese users looking to download popular browsers and communications software are being targeted by different malware ...
The Hacker News

HiddenGh0st, Winos and kkRAT Exploit SEO, GitHub Pages in Chinese Malware Attacks

August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.