Microsoft Identifies Complex Malvertising Campaign Affecting 1 Million Windows Users

Microsoft has identified a complex attack chain based on malvertising that has distributed Lumma and other infostealers to enterprise and consumer PC users. This campaign has infected 1 million Windows users. The campaign uses GitHub to host the malware and is considered a persistent threat. The impacts include the theft of sensitive information and the compromise of systems. This campaign is likely not the last of its kind.