PureLogs Stealer uses fake PDF JavaScript files and Google's Blogger pages in the VEIL#DROP campaign, enabling fileless ...
Fortinet says the Ousaban trojan uses geofenced phishing PDFs and steganography to steal banking credentials from users in Spain and Portugal.
Securonix says PureLogs infection starts with a fake PDF JavaScript file and uses PowerShell, fileless .NET loading, and LOLBins.
Fortinet says the May 2026 Ousaban campaign uses PDF lures, geofencing, and steganography to target Windows banking users.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results