"Fake Binance NFT Mystery Box Bots Steal Victim's Crypto Wallets"

A new RedLine malware distribution campaign has been seen promoting fake Binance NFT mystery box bots on YouTube in order to trick people into downloading the information-stealing malware from GitHub repositories. Binance mystery boxes are collections of non-fungible token (NFT) items that users purchase in the hopes of receiving a one-of-a-kind or uncommon item at a discounted price. Some of the NFTs obtained in these boxes can be used in online blockchain games to add rare cosmetics or personas. In the NFT market, mystery boxes are popular because they provide individuals with the thrill of the unknown as well as the possibility of a large payout if they land a rare NFT. However, marketplaces such as Binance sell them in limited quantities, thus making some boxes difficult to obtain before they sell out. This is why prospective buyers frequently use "bots" to acquire them, a trend that threat actors are trying to exploit. Threat actors are making YouTube videos to mislead potential victims into downloading and installing malware on their computers, believing they are obtaining a free mystery box scalper bot, according to a recent analysis from Netskope. RedLine is a well-known and effective information-stealing malware threat transmitted by a variety of threat actors and in various ways. It is now available for $100 a month on a subscription basis to independent operators. It allows for the theft of login passwords and cookies from web browsers, data from chat apps, VPN credentials, and cryptocurrency wallets. This article continues to discuss the new RedLine malware distribution campaign promoting fake Binance NFT mystery box bots on YouTube. 

Bleeping Computer reports "Fake Binance NFT Mystery Box Bots Steal Victim's Crypto Wallets"