fromThe Hacker News
2 days agoCastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
CastleLoader employs dead code injection and packing techniques to hinder analysis. After unpacking itself at runtime, it connects to a C2 server, downloads target modules, and executes them.
Information security