Dissecting YouTube’s Malware Distribution Network - Check Point Research
Check Point Research has uncovered a Ghost Network on YouTube that uses over 3,000 malicious videos to distribute malware, primarily infostealers like Lumma and Rhadamanthys. This network, active since 2021, saw a tripling of malicious videos in 2025, employing compromised accounts, fake engagement, and targeted content like game hacks and software cracks to deceive users into downloading malicious software.