VERY IMPORTANT

A widespread campaign involving nearly 1,000 fake web pages mimicking Reddit and WeTransfer has been discovered, aiming to distribute the Lumma Stealer malware. The attackers create convincing fake Reddit discussions and WeTransfer download pages to trick users into downloading the malicious payload. The campaign uses domain names that incorporate brand names with random characters to appear legitimate. Lumma Stealer is a sophisticated info-stealing tool capable of collecting passwords and session tokens, potentially leading to account hijacking. This type of malware has been implicated in recent high-profile attacks on various companies. The distribution methods for this campaign may include malvertising, SEO poisoning, and direct messages on social media.