securityonline.info 7/8/2026, 8:08:09 AM · external

Fileless Veil#Drop malware steals crypto via fake document trick

Fileless Veil#Drop malware steals crypto via fake document trick
CyberSIXT Evidence Panel
Primary Source securonix.com

THE page discusses a critical security alert regarding active exploits, specifically detailing four new vulnerabilities associated with CVEs affecting various software. Notable mentions include a dangerous upload vulnerability in JoomShaper's SP Page Builder and an authorization bypass in Langflow.

Additionally, the page highlights a new malware campaign known as Veil#Drop, which utilizes a fileless infection technique through the PureLog Stealer. This malware masquerades as legitimate documents, exploiting a naming trick to prompt users to execute malicious JavaScript. The infection chain involves downloading payloads from credible sources to evade detection, ultimately stealing sensitive data such as browser passwords and cryptocurrency wallet information.

Key points include the stealthy nature of the Veil#Drop campaign, the method of infection, the capabilities of PureLog Stealer, and recommendations for detection and defense against these threats.

View Primary Source Via securityonline.info

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline