-
Notifications
You must be signed in to change notification settings - Fork 414
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MALWARE #2031
Comments
what? (excuse my baffled response) I am one of the contributors and I can assure you there is no malware in our code. But, even with those possibilities in mind, correlation does not imply causation, so w/o further information I can't do much. |
And also, where did you download The only official website for this project is https://th-ch.github.io/youtube-music, any other site that claims to be official is lying to you. |
PS: If you don't mind, can you share the exe you used to install |
PS2: It is highly likely that you are talking about a similar project Here is a statement from one of their maintainers, Alipoodle. Chances are, you downloaded the infected release from that project. |
Are you aware if that infected release forcibly installed a chrome extension to steal user data? Also, I see you still haven't got the org and repos back 😔 |
Regarding the issue for YTM Desktop (ytmdesktop/ytmdesktop and not this project) The information regarding it, and the 3 accounts we found associated with it all (Adler, and 2x accounts used for hosting said viruses) were all taken down prior to any of us having noticed. The project was as well taken down in this sweep. We have obviously only just recently provided new versions of our one on a Fork, and until now we've specifically said we aren't providing a download except from KNOWN sources (GitHub from the org) and have been VERY clear with the Fork one about GPG signing and the GH Actions making the release. |
Installs a chrome add-on that can't be removed via conventional means (added by your "administrator") in attempts to steal data. The add-on had access to valuable data such as financial information and I would not have realised if it wasn't for the person who made this not realising that it changes your search engine to bing. Please educate me on how to report a github project.
The text was updated successfully, but these errors were encountered: