YouTube Ghost Network malware campaign targets creators with trojanized apps

A new malware campaign dubbed 'YouTube Ghost Network' has been uncovered, targeting YouTube content creators by distributing trojanized applications. This sophisticated operation uses fake versions of popular apps to infiltrate devices and steal sensitive information from creators, including login credentials and personal data. The attackers leverage social engineering tactics and malicious app distribution channels to maximize their reach and impact. Security researchers warn that this campaign is particularly dangerous due to its focus on high-profile targets in the digital content creation space, potentially leading to significant financial and reputational damage. The malware exhibits advanced evasion techniques, making detection and mitigation challenging for standard antivirus solutions. Experts advise creators to verify app sources rigorously and employ multi-factor authentication to protect their accounts. This incident highlights the growing trend of threat actors exploiting niche communities and platforms for targeted cyberattacks, emphasizing the need for heightened cybersecurity awareness and proactive defense measures among digital professionals.

This Cyber News was published on www.theregister.com. Publication date: Thu, 23 Oct 2025 22:44:04 +0000

Cyber News related to YouTube Ghost Network malware campaign targets creators with trojanized apps

YouTube Ghost Network malware campaign targets creators with trojanized apps - A new malware campaign dubbed 'YouTube Ghost Network' has been uncovered, targeting YouTube content creators by distributing trojanized applications. This sophisticated operation uses fake versions of popular apps to infiltrate devices and steal ...
3 months ago Theregister.com CVE-2025-3456 CVE-2025-7890 Ghost Network

YouTube Creators Under Attack via Brand Collaborators Requests Using Clickflix Technique - Cybercriminals initiate contact via email or social media, posing as marketing representatives from established brands offering lucrative deals that require the creator to review “campaign materials” hosted on compromised domains or cloud ...
9 months ago Cybersecuritynews.com

YouTube warns of AI-generated video of its CEO used in phishing attacks - The description of the video linked in the phishing emails asked those who open it to click a link that brings them to a page (studio.youtube-plus[.]com) where they're asked to "confirm the updated YouTube Partner Program (YPP) terms ...
10 months ago Bleepingcomputer.com

Latest Information Security and Hacking Incidents - Artificial Intelligence is reshaping the world of social media content creation, offering creators new possibilities and challenges. The fusion of art and technology is empowering creators by automating routine tasks, allowing them to channel their ...
1 year ago Cysecurity.news

YouTube Ghost Malware Network: A New Threat Landscape - The YouTube Ghost Malware Network represents a sophisticated and emerging threat in the cybersecurity landscape, leveraging the popular YouTube platform to distribute malicious software. This network exploits vulnerabilities in user interactions and ...
3 months ago Cybersecuritynews.com YouTube Ghost Network

YouTube Not Working on iPhone? Here's How to Fix It - If the YouTube app on your iPhone is crashing or will not open, there are various fixes you can try, such as force quitting the app, rebooting your device, and updating its version. Restarting your device provides a fresh start and can address minor ...
2 years ago Hackercombat.com

Google to crack down on third-party YouTube apps that block ads - YouTube announced yesterday that third-party applications that block ads while watching YouTube videos violates its Terms of Service, and it will soon start taking action against the apps. Google exposes numerous APIs allowing developers to integrate ...
1 year ago Bleepingcomputer.com

Malicious Android 'Vapor' apps on Google Play installed 60 million times - Although all of these apps have since been removed from Google Play, there's a significant risk that Vapor will return through new apps as the threat actors have already demonstrated the ability to bypass Google's review process. Bitdefender ...
10 months ago Bleepingcomputer.com

Ghost Ransomware Breaching Organizations in Over 70+ Countries - The ransom note demands payment for both decryption keys and to prevent the public release of stolen information, with attackers maintaining communication through anonymous email channels to apply psychological pressure for payment. Cyber Security ...
9 months ago Cybersecuritynews.com LockBit

Hijacked: How hacked YouTube channels spread scams and malware - As one of today's most popular social media platforms, YouTube is often in the crosshairs of cybercriminals who exploit it to peddle scams and distribute malware. Thefts of popular YouTube channels up the game further. By extending the reach of the ...
1 year ago Welivesecurity.com

ChatGPT Clone Apps Collecting Personal Data on iOS, Play Store - On Android devices, one of the apps analyzed by researchers has more than 100,000 downloads, tracks, and shares location data with ByteDance and Amazon, etc. ChatGPT, the AI software, has already taken the Internet by storm, and that is why ...
2 years ago Hackread.com Everest

Cybercriminals expand targeting of Iranian bank customers with known mobile malware - Researchers have uncovered more than 200 fake mobile apps that mimic major Iranian banks to steal information from their customers. The campaign was first discovered in July of this year, but since then, the cybercriminals have expanded their ...
2 years ago Therecord.media

YouTube Warns of Phishing Emails Attacking Creators to Steal Login Credentials - The video, indistinguishable from authentic footage due to advanced voice and visual synthesis, instructs creators to “confirm” policy changes by logging into studio.youtube-plus[.]com—a phishing domain mimicking YouTube Studio. The attack, ...
10 months ago Cybersecuritynews.com

Data Insecurity: Experts Sound the Alarm on 4 Apps Putting User Privacy at Risk - Even though many of us rely on apps to entertain us, guide us, manage our exercise, and connect with family and friends, they are notoriously hard to trust. In an age when technology is constantly evolving, it is almost impossible to tell if a ...
2 years ago Cysecurity.news

Stemming the Tide: Solving the Challenge of Password Reuse and Password-Stealing Malware - Password stealing malware is again rising with several attacks making the news cycle in recent months. A new password-stealing malware named Ov3r Stealer was discovered on Facebook Ads, spreading by way of fake job opportunities. Further analysis ...
1 year ago Cybersecurity-insiders.com