The Lumma Stealer malware, distributed on the video service YouTube, tries to take sensitive information from its victim.
Adobe Stock
According to the cyber security company Fortinet, YouTube is being used to distribute a malicious Trojan. It is a variant of Lumma Stealer, which is used to extract sensitive information.
Haitake is particularly annoying, because it can effectively bypass traditional data security filters, Fortinet says in its publication in the bulletin.
It tries to capture, for example, user, system and browser data from the infected machine.
In its use, the nuisance has a dozen servers worldwide. It circumvents protections by using platforms like Github and Mediafire, from which it directs its victims to its private servers.
The actual nuisance is spread with videos in which viewers are enticed to download allegedly hacked applications. Download links have been embedded in the description of the video, through which the viewer is enticed to download, for example, the Vegas Pro video editing program for free.
Of course, there is no video editing program behind the link, but zip files containing Lumma Stealer.
So think twice before you click on a shady link attached to a YouTube description.