Topic: command-and-control infrastructure

Sort by: Relevance | Date
  • Malicious npm Packages Target Ethereum Smart Contracts
    September 5, 2025
    88%

    Malicious npm Packages Target Ethereum Smart Contracts

    A new wave of malicious npm packages uses Ethereum smart contracts to hide command-and-control infrastructure, making detection more difficult. Attackers also created fake GitHub repositories with artificially inflated metrics to appear legitimate and target cryptocurrency developers. This campai...

    Read More »
  • LummaStealer Surges Following CastleLoader Malware Campaigns
    February 12, 2026
    60%

    LummaStealer Surges Following CastleLoader Malware Campaigns

    A major resurgence of LummaStealer malware is being driven by sophisticated social engineering campaigns that use a technique called ClickFix to deploy the CastleLoader. The attacks rely on CastleLoader, a highly obfuscated and modular malware loader that checks for security software and sandboxe...

    Read More »

Related Topics

sandbox evasion (1) persistence mechanisms (1) Supply Chain Attacks (1) clickfix technique (1) reversinglabs research (1) malware-as-a-service (1) fake accounts (1) malware obfuscation (1)