Over 1,500 Minecraft players have been infected by malware disguised as game mods distributed on GitHub. The malicious software, deployed by a Russian-speaking cybercriminal group known as the Stargazers Ghost Network, uses Java and .NET stealers to compromise victims' data, including browser passwords, cryptocurrency wallet information, and Discord tokens. These fake mods were part of a broader campaign involving 133 backdoored GitHub repositories, with 67 attributed to another group called Banana Squad. The malware payloads include AsyncRAT, Lumma, and Remcos, and have been spread through multiple platforms such as GitHub, YouTube, and Discord. The campaign also targets developers, using Trojanized repositories masquerading as Python tools, game cheats, and crypto applications. This evolving threat highlights the increasing use of developer tools as vectors for cyberattacks.