Jun 19, 11:10 AM

Over 1,500 Minecraft Players Infected by Malware from Russian Stargazers Ghost Network via 133 Backdoored GitHub Repos

Over 1,500 Minecraft players have been infected by malware disguised as game mods distributed on GitHub. The malicious software, deployed by a Russian-speaking cybercriminal group known as the Stargazers Ghost Network, uses Java and .NET stealers to compromise victims' data, including browser passwords, cryptocurrency wallet information, and Discord tokens. These fake mods were part of a broader campaign involving 133 backdoored GitHub repositories, with 67 attributed to another group called Banana Squad. The malware payloads include AsyncRAT, Lumma, and Remcos, and have been spread through multiple platforms such as GitHub, YouTube, and Discord. The campaign also targets developers, using Trojanized repositories masquerading as Python tools, game cheats, and crypto applications. This evolving threat highlights the increasing use of developer tools as vectors for cyberattacks.

#Minecraft #GitHub #Russian #Stargazers Ghost Network #Java #Discord #Banana Squad #AsyncRAT #Lumma #Remcos #YouTube #Trojanized #Python

Written with ChatGPT (GPT-4).

Sources

Additional media

Image #1 for story over-1500-minecraft-players-infected-malware-russian-stargazers-ghost-network-cd505e09

Over 1,500 Minecraft Players Infected by Malware from Russian Stargazers Ghost Network via 133 Backdoored GitHub Repos

Sources

Additional media

Similar Stories