TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
Find similarView original
The Hacker News avatar

TGINSIGHT POST

Post #8663

@thehackernews

The Hacker News

Views8,100Post view count
PostedMar 2403/24/2026, 04:38 PM
Post content

Post content

⚠️ ALERT: Fake resumes are infecting enterprise systems and the full attack runs in ~25 seconds. Obfuscated VBScript deploys credential stealers and a Monero miner, using Dropbox, #WordPress C2, and SMTP for exfiltration. It selectively targets domain-joined machines. 🔗 Read → https://thehackernews.com/2026/03/hackers-use-fake-resumes-to-steal.html