Hacker trap: Fake OnlyFans tool backstabs cybercriminals, steals passwords

Hackers are now targeting fellow cybercriminals with a deceptive tool masquerading as an OnlyFans account checker. This tool, instead of verifying stolen credentials, installs the Lumma information-stealing malware on the user's system. Discovered by Veriti Research, this operation highlights the treacherous dynamics within the cybercrime community, where trust can lead to betrayal. The fake checker claims to validate login details and check account balances, but it ultimately serves as a vehicle for malware distribution. Lumma, which has been available for rent since 2022, is known for its advanced capabilities, including stealing two-factor authentication codes and sensitive data like passwords and credit card information. The malware connects to a GitHub account used by the attacker to host additional malicious payloads. This incident is part of a broader trend where hackers have previously targeted each other, employing various tactics to steal credentials and cryptocurrency. The findings underscore the ongoing risks and complexities in the cybercrime landscape, where even those engaged in illicit activities can fall victim to sophisticated scams.

- A fake OnlyFans tool is infecting cybercriminals with Lumma malware instead of verifying credentials.

- Lumma is an advanced information-stealing malware-as-a-service available for rent.

- The malware can steal sensitive data, including two-factor authentication codes and passwords.

- The operation illustrates the treacherous nature of trust among cybercriminals.

- Previous incidents have shown hackers targeting each other with deceptive tactics.