• SmartLoader uses a trojanized Oura MCP server to deliver the StealC infostealer. • Threat actors cloned legitimate Oura MCP, creating fake forks to build credibility. • StealC steals credentials, browser passwords, and cryptocurrency wallet data. • Malware distributed via AI‑generated fake GitHub repos disguised as cheats and cracked software. • Attackers poison MCP registries, submitting trojanized servers to MCP Market listings. • Campaign relies on trust of GitHub and MCP directories to lure victims.
Article Summaries:
- Cybersecurity researchers have disclosed details of a new SmartLoader campaign that involves distributing a trojanized version of a Model Context Protocol (MCP) server associated with Oura Health to deliver an information stealer known as StealC. “The threat actors cloned a legitimate Oura MCP Server - a tool that connects AI assistants to Oura Ring health data - and built a deceptive infrastructure of fake forks and contributors to manufacture credibility,” Straiker’s AI Research (STAR) Labs team said in a report shared with The Hacker News. The end game is to leverage the trojanized version
- Cybersecurity researchers uncovered a new SmartLoader campaign that hijacks a legitimate Oura Health Model Context Protocol (MCP) server to deliver the StealC infostealer. Threat actors cloned the Oura MCP server, created fake GitHub accounts and repositories, and listed the trojanized version on the MCP registry, giving it an appearance of authenticity. Victims downloading the ZIP archive trigger an obfuscated Lua script that installs SmartLoader, which then deploys StealC to steal credentials, browser passwords, and cryptocurrency wallet data. The attack marks a shift from targeting pirated software users to developers, exploiting their high‑value secrets.
Sources: