iSec News

Astaroth banking trojan leverages GitHub to restore command-and-control, McAfee says

Cybercrime, News, Research, Vendors

October 13, 2025

McAfee Labs reported that the Astaroth banking trojan campaign uses GitHub-hosted images with steganography to update configurations and maintain access after C2 takedowns; the campaign targets Brazil and other Latin American countries and is delivered via DocuSign-themed phishing emails.

Latest NEWS

Smishing texts impersonate New York tax agency to steal inflation refund details

October 13, 2025
Unauthenticated flaw in Gladinet CentreStack and Triofox (CVE-2025-11371) exploited in the wild

October 11, 2025
Researchers: Stealit malware uses Node.js single-executable feature to spread

October 11, 2025
Researchers find 175 npm packages used to host phishing infrastructure in ‘Beamglea’ campaign

October 10, 2025
Google and Mandiant: Zero-day in Oracle E-Business Suite likely impacted dozens of organisations

October 10, 2025

Loading…Load More