Summary: Cybersecurity researchers have highlighted an ongoing campaign named GitVenom that targets gamers and cryptocurrency investors through malicious open-source projects on GitHub. The campaign reportedly has been active for over two years, leading to the theft of personal and banking data, as well as 5 bitcoins worth approximately 6,600. The exploits involve fake tools that facilitate data theft and hijacking cryptocurrency wallets, with infection attempts primarily seen in Russia, Brazil, and Turkey.
Affected: Gamers, Cryptocurrency Investors, GitHub Users
Keypoints :
- GitVenom campaign utilizes fake open-source projects to lure victims, including tools for Instagram automation and Bitcoin wallet management.
- Malware extracted data like passwords and cryptocurrency wallet information, transferring it via Telegram.
- Scammers exploit e-sports tournaments to defraud players of Counter-Strike 2, leading to stolen accounts and in-game items.
Source: https://thehackernews.com/2025/02/gitvenom-malware-steals-456k-in-bitcoin.html