The RU-APT-ChainReaver-L campaign is a sophisticated, cross-platform supply chain attack that hijacks trusted websites and GitHub repositories to distribute infostealer malware across Windows, macOS, and iOS. The attackers use valid code signing certificates, deceptive redirects, and compromised file-sharing services like Mirrored.to and Mirrorace.org to evade detection and steal credentials, cryptocurrency, and sensitive files.
Edward Kiledjian
@ekiledjian