A novel Windows-based cryptocurrency clipper that has been active since February 2026 and leverages Windows Script Host (WScript) and ActiveXObject calls to achieve remote code execution and persistent, high-frequency data theft. The campaign stands out because it avoids traditional installers and exposed IP-based command-and-control (C2) infrastructure; instead, it bundles a portable Tor client. Routes all […]
The post New Crypto Clipper Uses Windows Script Host and ActiveXObject for Remote Code Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
This article has been indexed from GBHackers Security | #1 Globally Trusted Cyber Security News Platform
Read the original article: