{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreieproagk4xzuomcb3qljkzchvk5dfhhbk4bcgjv6g6k36uyi4xnyy",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mke2eqpyooq2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreicoa5l2jmrtb3fhourq4q5s35jujf5rhuoqr26ztlgpb47vbxfu6u"
    },
    "mimeType": "image/webp",
    "size": 18142
  },
  "path": "/109-fake-github-repositories-spread-smartloader-and-stealc-malware/",
  "publishedAt": "2026-04-25T17:50:20.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "109 fake GitHub repositories spread SmartLoader and StealC malware",
    "VPN Central"
  ],
  "textContent": "A new malware campaign abused trust in GitHub by cloning legitimate open source projects and turning them into traps. Researchers at Hexastrike found 109 fake repositories across 103 GitHub accounts that pushed victims toward malicious ZIP files carrying SmartLoader, a LuaJIT-based loader that can fetch StealC and other payloads. This campaign can hit regular users […]\n\nThe post 109 fake GitHub repositories spread SmartLoader and StealC malware appeared first on VPN Central.",
  "title": "109 fake GitHub repositories spread SmartLoader and StealC malware"
}