LokiBot, one of the oldest credential-stealing malware families still active today, has resurfaced in a new multi-stage campaign designed to steal credentials from a wide range of applications. The campaign uses a JScript email attachment as its entry point, quietly setting off a chain of events...

#Malware

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

LokiBot Campaign Uses JScript Attachment, .NET Injector, and Process Injection to Steal Credentials

VERWANDTEARTIKEL

Shai-Hulud Payload Steals GitHub, npm, Cloud, CI/CD, and SSH Credentials From Developers

Malicious Chrome Extension Uses Native Messaging Host to Execute PowerShell Commands

Amadey- und StealC-Infrastruktur zerschlagen: Warum die Zerschlagung krimineller Malware-Netze für Unternehmen relevant ist

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

OpenClaw Skill Marketplace Exposes AI Agents to Supply Chain Malware and Financial Fraud

Hackers Use Cisco AnyConnect and Google Update Lures to Drop SharkLoader Malware