"Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates"
"Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates"
A new malware campaign delivers "Hijack Loader" artifacts signed with legitimate code-signing certificates. Researchers at HarfangLab detected the activity, noting that the attack chains aim to deploy the "Lumma" infostealer. Hijack Loader was discovered in September 2023, with attack chains that trick users into downloading a booby-trapped binary as pirated software or movies.