{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidttcgypl5ohtefjc72iomfw5v4w2dxyrzzeqngpue4pguiw5miwe",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mljtoarvb6k2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreifxgyefxdaole7unnxggtwellbfqvbyiwthdbupuvnsaoynxu43w4"
    },
    "mimeType": "image/webp",
    "size": 18926
  },
  "path": "/humanitarianbait-campaign-uses-github-releases-to-host-python-infostealer-payloads/",
  "publishedAt": "2026-05-10T09:23:07.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "HumanitarianBait campaign uses GitHub Releases to host Python infostealer payloads",
    "VPN Central"
  ],
  "textContent": "A cyberespionage campaign named HumanitarianBait is using fake humanitarian aid documents to deliver a Python-based infostealer on Windows systems. The attack hides a malicious shortcut inside a RAR archive and uses GitHub Releases to host the payload. Cyble Research and Intelligence Labs says the campaign uses Russian-language lures that appear to target Russian-speaking individuals or […]\n\nThe post HumanitarianBait campaign uses GitHub Releases to host Python infostealer payloads appeared first on VPN Central.",
  "title": "HumanitarianBait campaign uses GitHub Releases to host Python infostealer payloads"
}