Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Updated on October 10, 2025

Cybersecurity researchers have disclosed details of an active malware campaign called Stealit that has leveraged Node.js’ Single Executable Application (SEA) feature as a way to distribute its payloads.
According to Fortinet FortiGuard Labs, select iterations have also employed the open-source Electron framework to deliver the malware. It’s assessed that the malware is being propagated through…

Read the rest of the story at Read More

Source: The Hacker News

April 26, 2025 Uncategorized

ToyMaker Uses LAGTOY to Sell Access to C...

February 13, 2025 Uncategorized

Palo Alto Networks Patches Authenticatio...

September 18, 2024 Uncategorized

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Related posts

ToyMaker Uses LAGTOY to Sell Access to C...

Palo Alto Networks Patches Authenticatio...

GSMA Plans End-to-End Encryption for Cro...

Leave a Comment Cancel reply

Recent News

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide