A new strain of JavaScript dropper has been observed delivering next-stage payloads like Bumblebee and IcedID.
Cybersecurity firm Deep Instinct is tracking the malware as PindOS, which contains the name in its “User-Agent” string.
Both Bumblebee and IcedID serve as loaders, acting as a vector for other malware on compromised hosts, including ransomware. A recent report from Proofpoint
Related Post
- February 25, 2025
LightSpy Expands to 100+ Commands, Increasing Control Over
Cybersecurity researchers have flagged an updated version of the LightSpy implant that comes equipped with an expanded set of data
- February 25, 2025
Belarus-Linked Ghostwriter Uses Macropack-Obfuscated Excel Macros to Deploy
Opposition activists in Belarus as well as Ukrainian military and government organizations are the target of a new campaign that
- February 25, 2025
The AI Fix #39: AIs value their lives
In episode 39 of the AI Fix, our hosts watch a drone and a robot dog shoot fireworks at each
- February 25, 2025
5 Active Malware Campaigns in Q1 2025
The first quarter of 2025 has been a battlefield in the world of cybersecurity. Cybercriminals continued launching aggressive new campaigns