Attack reports (10)

• ClickFix Is Now Hiring: From Job Platform Impersonation to Python-Based RAT Delivery · Published 05/06/2026 00:52 · Modified 05/06/2026 06:41
• ClickFix Removes Your Background but Leaves the Malware · Published 30/04/2026 16:41 · Modified 04/05/2026 11:59
• DinDoor Backdoor: Deno Runtime Abuse and 20 Active C2 Servers · Published 23/04/2026 14:16 · Modified 27/04/2026 14:52
• Iranian MOIS Actors & the Cyber Crime Connection · Published 10/03/2026 21:10 · Modified 11/03/2026 10:36
• CastleLoader Malware Analysis: Full Execution Breakdown · Published 15/01/2026 15:37 · Modified 15/01/2026 15:40
• Snakes in the Castle: Inside the Walls of Python-Driven CastleLoader Delivery · Published 15/12/2025 09:05 · Modified 21/12/2025 19:03
• CastleLoader Activity Clusters Target Multiple Industries · Published 09/12/2025 05:39 · Modified 21/12/2025 18:49
• Malicious Infrastructure Finds Stability with aurologic GmbH · Published 06/11/2025 18:51 · Modified 06/11/2025 20:34
• Deconstructing a Cyber Deception: An Analysis of the Clickfix HijackLoader Phishing Campaign · Published 12/09/2025 14:56 · Modified 15/09/2025 18:49
• CastleLoader Analysis · Published 13/08/2025 11:57 · Modified 13/08/2025 15:47