#pythonmalware — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #pythonmalware, aggregated by home.social.
-
CrashFix marks a notable escalation in ClickFix tradecraft.
The campaign combines browser DoS, fake Chrome extensions, delayed execution, LOLBin abuse (finger.exe → ct.exe), and a portable Python environment to deploy a covert RAT only after identifying high-value systems.
This is a strong case for:
• Behavior-based detection
• EDR in block mode
• Restricting legacy utilities
• User-focused threat modeling💬 Which detection layer would catch this earliest in your environment?
🔔 Follow @technadu for deep technical threat analysis
#InfoSec #CrashFix #ClickFix #PythonMalware #LOLBins #EDR #ThreatHunting #DetectionEngineering #MicrosoftDefender #TechNadu
-
CrashFix marks a notable escalation in ClickFix tradecraft.
The campaign combines browser DoS, fake Chrome extensions, delayed execution, LOLBin abuse (finger.exe → ct.exe), and a portable Python environment to deploy a covert RAT only after identifying high-value systems.
This is a strong case for:
• Behavior-based detection
• EDR in block mode
• Restricting legacy utilities
• User-focused threat modeling💬 Which detection layer would catch this earliest in your environment?
🔔 Follow @technadu for deep technical threat analysis
#InfoSec #CrashFix #ClickFix #PythonMalware #LOLBins #EDR #ThreatHunting #DetectionEngineering #MicrosoftDefender #TechNadu
-
CrashFix marks a notable escalation in ClickFix tradecraft.
The campaign combines browser DoS, fake Chrome extensions, delayed execution, LOLBin abuse (finger.exe → ct.exe), and a portable Python environment to deploy a covert RAT only after identifying high-value systems.
This is a strong case for:
• Behavior-based detection
• EDR in block mode
• Restricting legacy utilities
• User-focused threat modeling💬 Which detection layer would catch this earliest in your environment?
🔔 Follow @technadu for deep technical threat analysis
#InfoSec #CrashFix #ClickFix #PythonMalware #LOLBins #EDR #ThreatHunting #DetectionEngineering #MicrosoftDefender #TechNadu
-
CrashFix marks a notable escalation in ClickFix tradecraft.
The campaign combines browser DoS, fake Chrome extensions, delayed execution, LOLBin abuse (finger.exe → ct.exe), and a portable Python environment to deploy a covert RAT only after identifying high-value systems.
This is a strong case for:
• Behavior-based detection
• EDR in block mode
• Restricting legacy utilities
• User-focused threat modeling💬 Which detection layer would catch this earliest in your environment?
🔔 Follow @technadu for deep technical threat analysis
#InfoSec #CrashFix #ClickFix #PythonMalware #LOLBins #EDR #ThreatHunting #DetectionEngineering #MicrosoftDefender #TechNadu
-
VVS Stealer: How This Python-Based Malware Targets Discord Users Through Advanced Obfuscation
https://techlife.blog/posts/vvs-stealer-discord-malware/
#VVSStealer #DiscordMalware #Pyarmor #Infostealer #PythonMalware #Cybersecurity #BrowserSecurity #CredentialTheft #MalwareAnalysis
-
VVS Stealer: How This Python-Based Malware Targets Discord Users Through Advanced Obfuscation
https://techlife.blog/posts/vvs-stealer-discord-malware/
#VVSStealer #DiscordMalware #Pyarmor #Infostealer #PythonMalware #Cybersecurity #BrowserSecurity #CredentialTheft #MalwareAnalysis
-
New Polymorphic Malware Undetected by Security Tools https://thecyberexpress.com/polymorphic-malware-undetected-by-security/ #TheCyberExpressNews #polymorphicmalware #remoteaccesstrojan #ThreatIntelligence #screenrecordings #TheCyberExpress #FirewallDaily #Pythonmalware #cryptomining #CyberThreats #CyberNews #keylogger #malware #XWorm
-
New Polymorphic Malware Undetected by Security Tools https://thecyberexpress.com/polymorphic-malware-undetected-by-security/ #TheCyberExpressNews #polymorphicmalware #remoteaccesstrojan #ThreatIntelligence #screenrecordings #TheCyberExpress #FirewallDaily #Pythonmalware #cryptomining #CyberThreats #CyberNews #keylogger #malware #XWorm
-
New Polymorphic Malware Undetected by Security Tools https://thecyberexpress.com/polymorphic-malware-undetected-by-security/ #TheCyberExpressNews #polymorphicmalware #remoteaccesstrojan #ThreatIntelligence #screenrecordings #TheCyberExpress #FirewallDaily #Pythonmalware #cryptomining #CyberThreats #CyberNews #keylogger #malware #XWorm
-
New Polymorphic Malware Undetected by Security Tools https://thecyberexpress.com/polymorphic-malware-undetected-by-security/ #TheCyberExpressNews #polymorphicmalware #remoteaccesstrojan #ThreatIntelligence #screenrecordings #TheCyberExpress #FirewallDaily #Pythonmalware #cryptomining #CyberThreats #CyberNews #keylogger #malware #XWorm
-
Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing” – Source: news.sophos.com https://ciso2ciso.com/sophos-mdr-tracks-two-ransomware-campaigns-using-email-bombing-microsoft-teams-vishing-source-news-sophos-com/ #rssfeedpostgeneratorecho #remotemachinemanagement #legitimateserviceabuse #MicrosoftOffice365 #SecurityOperations #CyberSecurityNews #ThreatResearch #nakedsecurity #pythonmalware #nakedsecurity #Javamalware #QuickAssist #blackbasta #BlackBasta
-
Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing” – Source: news.sophos.com https://ciso2ciso.com/sophos-mdr-tracks-two-ransomware-campaigns-using-email-bombing-microsoft-teams-vishing-source-news-sophos-com/ #rssfeedpostgeneratorecho #remotemachinemanagement #legitimateserviceabuse #MicrosoftOffice365 #SecurityOperations #CyberSecurityNews #ThreatResearch #nakedsecurity #pythonmalware #nakedsecurity #Javamalware #QuickAssist #blackbasta #BlackBasta
-
Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing” – Source: news.sophos.com https://ciso2ciso.com/sophos-mdr-tracks-two-ransomware-campaigns-using-email-bombing-microsoft-teams-vishing-source-news-sophos-com/ #rssfeedpostgeneratorecho #remotemachinemanagement #legitimateserviceabuse #MicrosoftOffice365 #SecurityOperations #CyberSecurityNews #ThreatResearch #nakedsecurity #pythonmalware #nakedsecurity #Javamalware #QuickAssist #blackbasta #BlackBasta
-
Sophos MDR tracks two ransomware campaigns using “email bombing,” Microsoft Teams “vishing” – Source: news.sophos.com https://ciso2ciso.com/sophos-mdr-tracks-two-ransomware-campaigns-using-email-bombing-microsoft-teams-vishing-source-news-sophos-com/ #rssfeedpostgeneratorecho #remotemachinemanagement #legitimateserviceabuse #MicrosoftOffice365 #SecurityOperations #CyberSecurityNews #ThreatResearch #nakedsecurity #pythonmalware #nakedsecurity #Javamalware #QuickAssist #blackbasta #BlackBasta
-
Weaponized Python Scripts Deliver New SwaetRAT Malware https://gbhackers.com/swaetrat-python-malware/ #CyberSecurityNews #Malwareanalysis #cybersecurity #PythonMalware #Malware #Python
-
Malicious Python Package Attacking macOS Developers To Steal Google Cloud Logins https://gbhackers.com/malicious-python-package-macos-google-cloud/ #CyberSecurityNews #SocialEngineering #cybersecurity #PythonMalware #CyberAttack #Malware #macOS
-
Malicious PyPI Package Attacking Discord Users To Steal Credentials https://gbhackers.com/malicious-pypi-package-discord-credentials/ #DiscordSecurity #cybersecurity #Vulnerability #PythonMalware #Malware
-
Malicious PyPI Package Attacking Discord Users To Steal Credentials https://gbhackers.com/malicious-pypi-package-discord-credentials/ #DiscordSecurity #cybersecurity #Vulnerability #PythonMalware #Malware
-
Malicious PyPI Package Attacking Discord Users To Steal Credentials https://gbhackers.com/malicious-pypi-package-discord-credentials/ #DiscordSecurity #cybersecurity #Vulnerability #PythonMalware #Malware
-
Malicious PyPI Package Attacking Discord Users To Steal Credentials https://gbhackers.com/malicious-pypi-package-discord-credentials/ #DiscordSecurity #cybersecurity #Vulnerability #PythonMalware #Malware