TLDR
Attackers are uploading fake installers and plugins for popular software such as ChatGPT, Claude, AutoTune, Kontakt and Ableton Live to GitHub and SourceForge. Compromised YouTube channels (with AI generated videos already passing 50,000...
Como funciona
Attackers are uploading fake installers and plugins for popular software such as ChatGPT, Claude, AutoTune, Kontakt and Ableton Live to GitHub and SourceForge. Compromised YouTube channels (with AI generated videos already passing 50,000...
Señales de alerta
- The installer or "plugin" asks you to open a terminal and manually copy paste a command from the README. The GitHub or SourceForge account is brand new, has no history, or reposts many unrelated "cracked" or "free" tools. The YouTube video promoting the link is AI generated, comes from a small or unrelated channel, or mixes random software tutorials
Qué hacer
- 1Download software only from the official vendor site or verified storefronts
- 2avoid GitHub/Sour
Fuente
malwarebytes
Fuente verificada por Mythos Forensic Team
https://www.malwarebytes.com/blog/threat-intel/2026/05/fake-software-on-github-and-sourceforge-distribute-deno-ratFAQ
Es Fake ChatGPT, Claude and gaming software on GitHub and SourceForge install a stealthy RAT una estafa real?
Si. Trata el mensaje, la llamada o la solicitud de pago como sospechosos hasta que los verifiques por un canal oficial.
Cuales son las primeras senales?
The installer or "plugin" asks you to open a terminal and manually copy paste a command from the README. The GitHub or SourceForge account is brand new, has no history, or reposts many unrelated "cracked" or "free" tools. The YouTube video promoting the link is AI generated, comes from a small or unrelated channel, or mixes random software tutorials
Que debo hacer primero?
Download software only from the official vendor site or verified storefronts; avoid GitHub/Sour
Puede LegalAudit revisar mi caso?
Si. Abre el chat gratis y pega el mensaje, el enlace, el remitente o los datos de pago para un triage.