GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites

Updated on November 11, 2025

The malware known as GootLoader has resurfaced yet again after a brief spike in activity earlier this March, according to new findings from Huntress.
The cybersecurity company said it observed three GootLoader infections since October 27, 2025, out of which two resulted in hands-on keyboard intrusions with domain controller compromise taking place within 17 hours of initial infection.
“…

Read the rest of the story at Read More

Source: The Hacker News

September 11, 2024 Uncategorized

Ivanti Releases Urgent Security Updates ...

January 15, 2025 Uncategorized

Critical SimpleHelp Flaws Allow File The...

September 4, 2024 Uncategorized

GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites

Related posts

Ivanti Releases Urgent Security Updates ...

Critical SimpleHelp Flaws Allow File The...

Hackers Hijack 22,000 Removed PyPI Packa...

Leave a Comment Cancel reply

Recent News

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide