Over 100 GitHub Repositories Distributing BoryptGrab Stealer - SecurityWeek

A new information stealer named BoryptGrab is being distributed through over 100 GitHub repositories, capable of harvesting browser and cryptocurrency wallet data, system information, and user files. Some variants also deploy the TunnesshClient backdoor, which uses an SSH tunnel for command-and-control communication.