NETCROOK

Monday 25 May 2026 20:05:42 GMT+02:00

#Amatera

Windows’ Old Script Host Is Back in the Dock as Stealers Ride In

20 May 2026 10:25Malware & BotnetsNorth America / USANEXUSGUARDIAN

MSHTA’s return to attacker toolkits shows how a trusted Windows component can still be used as a delivery path for commodity malware families such as LummaStealer and Amatera.

#MSHTA abuse | #LummaStealer | #Amatera

When a Retired Windows Relic Becomes the Delivery Truck for Stealers

20 May 2026 08:18Malware & BotnetsNorth America / USANEXUSGUARDIAN

MSHTA is not a zero-day exploit; it is a trusted Windows script host that attackers can abuse as a low-friction launch path for commodity malware.

#MSHTA | #LummaStealer | #Amatera