New ‘LucidRook’ malware used in targeted attacks on NGOs, universities

A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations ...
GitHub

Loadstringl/Yew-Auto-loader.-Lua

local KEY_SECRET = "YEW-PRO-8829" -- Direct matching to avoid decoding errors local DISCORD_LINK = "https://discord.gg/kfeMqHhaR" local EXPIRE_STAMP = 1774227600 -- 1 ...
GitHub

tutorial-constants.lua

Copyright (c) 2007, 2008, Oracle and/or its affiliates. All rights reserved. -- we need at least 0.5.1 assert(proxy.PROXY_VERSION >= 0x00501, "you need at least mysql ...
The Hacker News

DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage

Ukrainian entities have emerged as the target of a new campaign likely orchestrated by threat actors linked to Russia, according to a report from S2 Grupo's LAB52 threat intelligence team. The ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

Three different ClickFix campaigns have been found to act as a delivery vector for the deployment of a macOS information stealer called MacSync. "Unlike traditional exploit-based attacks, this method ...