Windows Script Host: Initial Execution Vector in VEIL#DROP
Windows Script Host was used to execute the initial JavaScript payload in the VEIL#DROP campaign, launching PowerShell with execution policy bypasses.
Windows Script Host was used to execute the initial JavaScript payload in the VEIL#DROP campaign, launching PowerShell with execution policy bypasses.
OtterCookie is a JavaScript malware family linked to North Korean campaigns, capable of remote access, command execution, screenshot capture, and data theft…
On June 17, 2026, a software supply chain attack codenamed 'easy-day-js' compromised 145 npm packages under the @mastra/* namespace, a popular open-source…
A campaign first flagged in March 2026 involving malicious obfuscated JavaScript payloads in hundreds of GitHub repositories. It has compromised over 1,900…
A known JavaScript malware associated with the Contagious Interview campaign. Delivered via malicious packages and extensions, it searches for configuration files and…
An analysis of a popular Google Chrome ad block extension for YouTube, named Adblock for YouTube (ID: cmedhionkhpnakcndndgjdbohmhepckk), has uncovered the ability…