#castleloader
#castleloader

[ follow ]

Once-hobbled Lumma Stealer is back with lures that are hard to resist

CastleLoader runs in-memory and obfuscated, installs Lumma to steal credentials, files, crypto wallets, and other sensitive data via trusted platforms and simple user actions.

Information security

fromThe Hacker News

2 months ago

Four Threat Clusters Using CastleLoader as GrayBravo Expands Its Malware Service Infrastructure

Multiple distinct threat clusters use CastleLoader and associated CastleBot/CastleRAT tools, indicating a malware-as-a-service model and broad malware distribution.

Information security

fromThe Hacker News

7 months ago

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

CastleLoader is a versatile malware loader used in campaigns distributing various information stealers and RATs.

[ Load more ]

#castleloader#castleloader

Once-hobbled Lumma Stealer is back with lures that are hard to resist

Four Threat Clusters Using CastleLoader as GrayBravo Expands Its Malware Service Infrastructure

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

#castleloader
#castleloader