Huntress finds three GootLoader infections since Oct 27, 2025; two led to domain controller compromise within 17 hours.
7don MSNOpinion
Gootloader malware back for the attack, serves up ransomware
Gootloader JavaScript malware, commonly used to deliver ransomware, is back in action after a period of reduced activity.
The economics of cybercrime have shifted dramatically. What once took skilled attackers weeks to reverse engineer can now be accomplished in hours using AI-powered analysis tools and automated systems ...
The Gootloader malware scam, which was thought to have been disrupted and shut down in March 2025, has returned with both old ...
The typosquatted “@acitons/artifact” package targeted GitHub’s CI/CD workflows, stealing tokens and publishing malicious ...
Over the last month, Barracuda threat analysts have seen the following notable developments in email-based threats targeting ...
Cybersecurity researchers have discovered a malicious npm package named "@acitons/artifact" that typosquats the legitimate " ...
The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to appear authentic.
The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with ...
Google's Threat Intelligence Group (GTIG) has identified a major shift this year, with adversaries leveraging artificial intelligence to deploy new malware families that integrate large language ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback