Tag

Malvertising

3 briefs RSS

Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor

Operation FlutterBridge is a malvertising campaign targeting macOS users with the new FlutterShell backdoor, which uses malicious desktop applications for adware distribution and provides backdoor capabilities such as command execution and file system manipulation, with some variants using AI summarization for data exfiltration.

Chrome +5 CL-CRI-1089 malvertising macos backdoor

3r 1t 8i 2w ago

high advisory

Malvertising Campaign Abuses Google Ads and Claude.ai for macOS Malware Delivery

3 rules 1 TTP 3 IOCs

Attackers are using Google Ads malvertising and weaponized Claude.ai shared chats to trick macOS users into downloading and executing malware, leading to credential theft and system compromise.

Google Ads +1 malvertising macos infostealer googleads claudeai

3r 1t 3i May 10, 2026

high advisory

Fake Claude AI Site Spreads Beagle Backdoor via DLL Sideloading

2 rules 2 TTPs 3 IOCs

A malicious website impersonating Anthropic's Claude AI platform delivers the Beagle backdoor through a DLL sideloading attack, leveraging a compromised G DATA antivirus updater to execute malicious code.

Claude +2 malvertising dll sideloading backdoor beagle donutloader

2r 2t 3i May 7, 2026