Summary: Hackers are distributing nearly 1,000 fraudulent web pages that impersonate Reddit and WeTransfer to deliver the Lumma Stealer malware. These fake sites use social engineering tactics to appear legitimate, luring victims into downloading malicious software. The campaign highlights the ongoing threat of info-stealer malware, which can compromise sensitive data and credentials.

Threat Actor: Unknown | unknown
Victim: General Public | general public

Keypoints :

• Close to 1,000 fake web pages impersonating Reddit and WeTransfer have been identified.
• The Lumma Stealer malware is delivered through these fraudulent sites, which mimic legitimate interfaces.
• Info-stealing malware like Lumma can collect sensitive data, including passwords and session tokens, posing significant risks to users and organizations.