• About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us
TechTrendFeed
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT
No Result
View All Result
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT
No Result
View All Result
TechTrendFeed
No Result
View All Result

Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Assaults

Admin by Admin
July 7, 2026
Home Cybersecurity
Share on FacebookShare on Twitter


Securonix has uncovered a classy multi-stage malware supply framework that makes use of compromised web sites and social engineering to contaminate customers with info stealers.

Dubbed Veil#Drop, the framework combines JavaScript launchers and PowerShell obtain cradles for the deployment and execution of malware hosted on Blogspot, Google’s trusted infrastructure.

The an infection chain begins with a JavaScript file posing as a doc, designed to launch PowerShell code and evade execution insurance policies. The PowerShell retrieves further payloads from attacker-controlled Blogspot pages.

The Blogspot-hosted payload shows a decoy doc, terminates particular processes, and decrypts embedded content material. The decoded code generates further Blogspot URLs and executes subsequent payloads immediately in reminiscence.

“A second-stage loader incorporates XOR-encoded .NET assemblies saved as giant embedded knowledge blobs which might be reconstructed and decrypted at runtime, stopping simple static evaluation and decreasing the effectiveness of signature-based detection mechanisms,” Securonix explains.

The subtle an infection chain additionally incorporates a number of fallback mechanisms, abusing trusted Microsoft-signed binaries for code execution and protection evasion.

Commercial. Scroll to proceed studying.

“The mixture of compromised web sites, multi-extension masquerading, trusted cloud companies, XOR-obfuscated payloads, reflective .NET loading, fileless execution, and LOLBIN abuse demonstrates a deliberate effort to evade conventional antivirus options, scale back forensic artifacts, and keep operational stealth all through the an infection lifecycle,” Securonix notes.

Ultimately, the sufferer’s machine is contaminated with PureLog Stealer, a .NET-based info stealer that performs system reconnaissance and begins harvesting knowledge from Google Chrome. Microsoft Edge, Firefox, Courageous Browser, Opera, and Chromium-based browsers.

The malware targets credentials, cookies, autofill knowledge, session tokens, looking histories, and different delicate info saved within the browsers. It additionally searches for cryptocurrency pockets info on the sufferer’s machine.

Moreover, PureLog Stealer can harvest info from messaging purposes, electronic mail purchasers, distant entry software program, FTP purchasers, cloud storage purposes, developer instruments, and password managers. The malware packages the harvested info and sends it to attacker-controlled servers in an encrypted type.

Given PureLog Stealer’s in depth knowledge harvesting capabilities, a single contaminated workstation may result in broader atmosphere compromise, relying on the credentials, tokens, keys, and different secrets and techniques saved on the system.

“In enterprise environments, info stealers are ceaselessly the primary stage of bigger intrusion campaigns. Stolen credentials could later be used to deploy ransomware, conduct knowledge theft operations, carry out enterprise electronic mail compromise assaults, or facilitate long-term espionage actions,” Securonix notes.

Associated: Vital SimpleHelp Vulnerability Exploited for Malware Supply

Associated: CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

Associated: Rokarolla Banking Trojan Targets 200 Purposes

Associated: Infostealers Flip Tens of millions of Units Into Credential Theft Machines

Tags: AttacksBlogspotHosteddeliveredpayloadsVeilDrop
Admin

Admin

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Trending.

Ideas on Streaming Companies: 2024 Version

Ideas on Streaming Companies: 2024 Version

June 16, 2025
From exterior espionage to home concentrating on

From exterior espionage to home concentrating on

June 14, 2026
Enterprise-grade pure language to SQL era utilizing LLMs: Balancing accuracy, latency, and scale

Enterprise-grade pure language to SQL era utilizing LLMs: Balancing accuracy, latency, and scale

April 27, 2025
Have you ever checked your blind spot?

Have you ever checked your blind spot?

May 6, 2026
Drive Enterprise Progress with Skilled Odoo ERP Consulting

Drive Enterprise Progress with Skilled Odoo ERP Consulting

May 3, 2025

TechTrendFeed

Welcome to TechTrendFeed, your go-to source for the latest news and insights from the world of technology. Our mission is to bring you the most relevant and up-to-date information on everything tech-related, from machine learning and artificial intelligence to cybersecurity, gaming, and the exciting world of smart home technology and IoT.

Categories

  • Cybersecurity
  • Gaming
  • Machine Learning
  • Smart Home & IoT
  • Software
  • Tech News

Recent News

Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Assaults

Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Assaults

July 7, 2026
Ripple Labs investor and exec Chris Larsen plans to spend $3.5M to assist Alex Bores, a NY congressional candidate on the heart of a proxy conflict over AI regulation (New York Instances)

Anthropic researchers element J-space, a small set of neural patterns in Claude that reveals inner ideas that do not seem within the mannequin’s output (Anthropic)

July 6, 2026
  • About Us
  • Privacy Policy
  • Disclaimer
  • Contact Us

© 2025 https://techtrendfeed.com/ - All Rights Reserved

No Result
View All Result
  • Home
  • Tech News
  • Cybersecurity
  • Software
  • Gaming
  • Machine Learning
  • Smart Home & IoT

© 2025 https://techtrendfeed.com/ - All Rights Reserved