Huntress finds three GootLoader infections since Oct 27, 2025; two led to domain controller compromise within 17 hours.

A widely-adopted JavaScript library has been found carrying a critical vulnerability which could allow threat actors to ...

A new stealthy JavaScript loader named RATDispenser is being used to infect devices with a variety of remote access trojans (RATs) in phishing attacks. The novel loader was quick to establish ...

In the new campaign, Gootloader was most likely leveraged by a group known as Storm-0494, as well as its downstream operator, ...

As browser-based exploits and specifically JavaScript malware have shouldered their way to the top of the list of threats, browser vendors have been scrambling to find effective defenses to protect ...

Gootloader JavaScript malware, commonly used to deliver ransomware, is back in action after a period of reduced activity.

The risk in the JavaScript ecosystem isn't theoretical: earlier this month, a number of packages used by millions of developers were compromised via malicious code. These malware attacks against ...

The North Korea-affiliated threat actor known as Konni (aka Earth Imp, Opal Sleet, Osmium, TA406, and Vedalia) has been attributed to a new set of attacks targeting both Android and Windows devices ...

Obfuscated (hidden) Javascript attacks were popular among criminal hackers a couple of years ago, and were widely reported by several vendors, who developed heuristic scanning solutions to counter the ...

The SANS Internet Storm Center reports a rash of malicious spam pushing Kovter click-fraud malware. A new malware campaign has been spotted that has begun seeding spam messages with a downloader ...

VANCOUVER, BC -- Malicious hackers are starting to encrypt JavaScript files to escape anti-virus detection, adding another element of sophistication to browser-based malware attacks. But, according to ...