CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

Updated on July 24, 2025

Cybersecurity researchers have shed light on a new versatile malware loader called CastleLoader that has been put to use in campaigns distributing various information stealers and remote access trojans (RATs).
The activity employs Cloudflare-themed ClickFix phishing attacks and fake GitHub repositories opened under the names of legitimate applications, Swiss cybersecurity company PRODAFT said in…

Read the rest of the story at Read More

Source: The Hacker News

August 15, 2025 Uncategorized

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw...

May 13, 2025 Uncategorized

China-Linked APTs Exploit SAP CVE-2025-3...

September 25, 2024 Uncategorized

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

Related posts

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw...

China-Linked APTs Exploit SAP CVE-2025-3...

Transportation Companies Hit by Cyberatt...

Leave a Comment Cancel reply

Recent News

Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks

Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages

Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger

Weak Passwords and Compromised Accounts: Key Findings from the Blue Report 2025

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

Experts Find AI Browsers Can Be Tricked by PromptFix Exploit to Run Malicious Hidden Prompts

🕵️ Webinar: Discover and Control Shadow AI Agents in Your Enterprise Before Hackers Do