FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads

Updated on June 4, 2026

Cybersecurity researchers have shed light on a macOS malvertising campaign codenamed Operation FlutterBridge that spreads a new backdoor called FlutterShell.

According to Palo Alto Networks Unit 42, the campaign is said to be the next stage of a previously reported activity cluster dubbed JSCoreRunner (aka FileRipple) in late August 2025. The cybercrime group behind the two attack chains is…

Read the rest of the story at Read More

Source: The Hacker News

April 1, 2026 Uncategorized

New Chrome Zero-Day CVE-2026-5281 Under ...

October 10, 2025 Uncategorized

175 Malicious npm Packages with 26,000 D...

August 6, 2025 Uncategorized

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads

Related posts

New Chrome Zero-Day CVE-2026-5281 Under ...

175 Malicious npm Packages with 26,000 D...

Trend Micro Confirms Active Exploitation...

Leave a Comment Cancel reply

Recent News

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS

Hackers Spied on a Stock Exchange Executive’s Outlook Mailbox for Five Months

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog

DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT