A new FileFix social engineering attack mimics Meta account suspension alerts to deceive users into installing the StealC infostealer malware. It utilizes a multi-language phishing page that instructs victims to copy a disguised PowerShell command into the File Explorer address bar, ultimately leading to the execution of malicious code hidden within a JPG image. Acronis highlights the evolution of this attack method and emphasizes the need for heightened awareness against such sophisticated phishing tactics.

A sophisticated npm attack employs over seven layers of obfuscation to distribute the Pulsar Remote Administration Tool (RAT). The obfuscation techniques include the use of Japanese Unicode characters, hexadecimal encoding, array shuffling, binary array encoding, and even image steganography to conceal malicious code within a PNG image. The malicious npm package remains publicly available, highlighting ongoing cybersecurity risks.

Browser cache smuggling is a technique that malicious actors can exploit to deliver malware by hiding it in the browser's cache, allowing for less suspicious downloads. The article explores methods for executing cached DLLs and shellcode through COM hijacking and steganography, ultimately demonstrating a way to maintain persistence within the Chrome browser environment. The author highlights the effectiveness of this approach in evading detection by modern endpoint detection and response (EDR) solutions.