SourceForge Malware Campaign Targets Users with Hidden Cryptocurrency Miners

A new malware campaign has been uncovered where malicious cryptocurrency miners are being distributed through fake Microsoft Office downloads on the popular open-source software platform, SourceForge. The attack targets users who download seemingly legitimate add-ins under a fake project, ‘officepackage’. Researchers at Kaspersky found that the project’s auto-generated subdomain, “officepackage.sourceforge.io”, was used to disguise the true source of the malware and deceive unsuspecting users seeking office software.