credential theft 8 social engineering 7 clickfix 5 credential harvesting 5 phishing 4 netsupport rat 3 infostealer 3 dll sideloading 3 xmrig 3 cryptocurrency fraud 3 castleloader 2 dynowiper 2 impacket 2 valleyrat 2 minecraft 2 mirai 2 spear phishing 2 smishing 2 typosquatting 2 ransomware-as-a-service 2 the gentlemen 2 powershell 2 information stealer 2 supply chain attack 2 macos 2 data exfiltration 2 phishing-as-a-service 2 process hollowing 2 seo poisoning 2 cobalt strike 2 cryptocurrency theft 2 vshell 1 proxylogon exploitation 1 godzilla 1 exchange server compromise 1 ringq 1 godzilla webshell 1 shadowpad 1 noodlerat 1 reflective loader 1 energy sector 1 cve-2024-2617 1 rubeus 1 lazywiper 1 destructive operations 1 fortigate exploitation 1 combined heat power 1 renewable energy 1 poland infrastructure 1 industrial control systems 1 wiper attack 1 python backdoor 1 silver fox 1 winos 4.0 1 ABCDoor 1 rdp-enablement 1 credential-theft 1 sslvpn-compromise 1 nssm-persistence 1 reverse-shell 1 komari 1 github-infrastructure 1 game server targeting 1 ddos-for-hire 1 mirai-derived 1 vltrig 1 xlabs_v1 1 bandwidth profiling 1 iot botnet 1 adb exploitation 1 fake login page 1 vendor email compromise 1 supply chain 1 ai platform abuse 1 markdown file 1 httpspy 1 webex spoofing 1 loaddll.dll 1 south korea targeting 1 memloader 1 jsonping 1 calc.exe 1 kimsuky 1 spyloader.dll 1 rat 1 spyinster.dll 1 sidecopy 1 xenorat 1 transparent tribe 1 apt36 1 pashto lure 1 provincial targeting 1 multi-stage loader 1 afghanistan ministry of finance 1 hta payload 1 phaas 1 mfa bypass 1 phoenix system 1 financial fraud 1 bts injection 1 browser data 1 chromelevator 1 grabbot 1 node.js loader 1 syscalls evasion 1 lofystealer 1 slinky 1 elasticsearch 1 supply-chain-attack 1 opensearch 1 npm 1 go language 1 kazuar 1 endpoint exploitation 1 ekz infostealer 1 forticlient ems 1 vpn configuration abuse 1 cve-2026-35616 1 lumma stealer 1 hijackloader 1 lummastealer 1 government impersonation 1 payment card theft 1 multi-country campaign 1 postal service fraud 1 audiofix 1 npm trojan 1 linkedin phishing 1 cryptocurrency 1 ci/cd hijacking 1 minirat 1 developer targeting 1 domain generation algorithm 1 fake updates 1 dns tunneling 1 silentcryptominer 1 cryptocurrency miner 1 dll side-loading 1 piracy sites 1 blackfile 1 saas attacks 1 unc6671 1 extortion 1 cordial spider 1 the com 1 vishing 1 ticket fraud 1 ghost stadium 1 credential phishing 1 facebook advertising exploitation 1 fifa world cup 2026 1 cryptojacking 1 screenconnect abuse 1 gpu mining 1 simplerunpe 1 blockchain c&c 1 etherhiding 1 sectoprat 1 clearfake 1 bnb smart chain 1 acrstealer 1 cryptocurrency wallets 1 purelogs 1 poolrat 1 pondrat 1 dpapiloader 1 themeforestrat 1 hellsgate 1 remotepeloader 1 remotepe 1 oauth abuse 1 token theft 1 kali365 1 microsoft 365 1 inbox rules 1 device code phishing 1 zero-day exploitation 1 bluebeam 1 viewstate deserialization 1 bluebeam web shell 1 rooting 1 rootnik 1 android 1 app promotion 1 wifi credentials 1 information theft 1 developer compromise 1 rce backdoor 1 laravel 1 confluence exploitation 1 kerberos relay 1 operation epic fury 1 minifast 1 minijunk 1 nimbus manticore 1 appdomain hijacking 1 minijunk v2 1 screening serpens 1 appdomainmanager hijacking 1 iran nexus 1 vbcloud 1 powershower 1 reversesocks 1 phantomheart 1 powercloud 1 cloud atlas 1 amos stealer 1 ai agent exploitation 1 cursor 1 applescript 1 persistent implant 1 rtf exploitation 1 ctos rat 1 uwarrior 1 gopherwhisper 1 laxgopher 1 ratgopher 1 boxoffriends 1 go-based backdoors 1 jabgopher 1 china-aligned apt 1 frienddelivery 1 deno runtime 1 caddy proxy 1 tsundere botnet 1 sumatrapdf 1 cobaltstrike 1 adaptixc2 beacon 1 entryshell 1 toshis 1 tropic trooper 1 chinese targets 1 cobaltstrike beacon 1 toshis loader 1 adaptixc2 1 github c2 1 scheduled task 1 cmdkey 1 unc path 1 lolbins 1 remote dll 1 regsvr32 1 dprk 1 astrill vpn 1 vpn infrastructure 1 freelance platforms 1 fake it workers 1 residential proxies 1 sanctions evasion 1 docker hub poisoning 1 github actions 1 mcpaddon.js 1 npm propagation 1 ci/cd compromise 1 canister worm 1 checkmarx kics 1 vs code extension 1 supply chain compromise 1 cryptominer 1 repocket 1 botnet 1 linux compromise 1 multiple threat actors 1 systemd-logind 1 dnser 1 ai-assisted remediation 1 earnfm 1 fkkkf 1 cve-2025-55182 1 fh8a7d7m 1 react2shell 1 cmstplua-uac-bypass 1 azure-trusted-signing 1 cryptor-as-a-service 1 dll-sideloading 1 etw-patching 1 amsi-bypass 1 screenconnect 1 fudcrypt 1 crypto clipper 1 twizadmin 1 multi-platform 1 russian-speaking 1 crpx0 1 maas 1 ransomware 1 takedown 1 law enforcement operation 1 ransomware operators 1 data theft 1 cybercrime forums 1 fraud operations 1 europol 1 first vpn 1 termite 1 telecommunications 1 asyncrat 1 soullessrat 1 bulletproof hosting 1 middle east 1 offensive frameworks 1 phexia 1 phorpiex 1 twizt 1 echogather 1 maas platforms 1 c2 infrastructure 1 tactical rmm 1 lockbit black 1 gophish 1 hajime 1 espionage campaigns 1 sliver 1 prism x 1 iot botnets 1 hellsuchecker 1 aquilarat 1 cve-2025-11953 1 acunetix 1 keitaro 1 mozi 1 rondodox 1 scheduled tasks 1 trojan:win32/mptamperbulkexcl.h 1 defense evasion 1 cve-2024-55591 1 socks proxy 1 qilin 1 event log clearing 1 rdp compromise 1 microsoft defender tampering 1 maga community 1 wordpress compromise 1 gotoresolve 1 telegram channel 1 qanon targeting 1 information operation 1 jailbroken gemini 1 ai-assisted 1 espionage 1 chm files 1 backdoor 1 south korea diplomacy 1 lotuslite 1 india banking 1 javascript loader 1 mach-o man 1 browser stealing 1 pylangghostrat 1 mach-o binaries 1 telegram exfiltration 1 fintech targeting 1