CTM360: Lumma Stealer and Ninja Browser malware campaign abusing Google Groups
Bleeping Computer
by Sponsored by CTM360February 15, 2026
CTM360 reports 4,000+ malicious Google Groups and 3,500+ Google-hosted URLs used to spread the Lumma Stealer infostealing malware and a trojanized "Ninja Browser." The report details how attackers abuse trusted Google services to steal credentials and maintain persistence across Windows and Linux systems.
Verticals
securitytech
Originally published on Bleeping Computer on 2/15/2026