#unicode-obfuscation
#unicode-obfuscation

[ follow ]

GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs

GlassWorm uses malicious VS Code extensions and invisible Unicode obfuscation to steal credentials, drain cryptocurrency wallets, self-replicate across extensions, and use blockchain-based C2 for resilient updates.

Growth hacking

fromThe Hacker News

6 months ago

Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper

A malicious npm package uses Google Calendar as a dead drop to deliver next-stage payloads, employing Unicode-based obfuscation.

[ Load more ]

#unicode-obfuscation#unicode-obfuscation

GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs

Malicious npm Package Leverages Unicode Steganography, Google Calendar as C2 Dropper

#unicode-obfuscation
#unicode-obfuscation