Security News GitHub comments abused to push password stealing malware masked as fixes BleepingComputer Daniel Bender Aug 31, 2024 GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments.