Utopia Tech
Security1 min read

New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer

Cybersecurity researchers have disclosed details of a new campaign that delivers CastleStealer by means of a previously unreported malware loader dubbed OXLOADER. According to Elastic Security Labs, the campaign leverages malicious Google Ads as a starting point to distribute the malware. Evidence indicates that the threat actor is likely Russian-speaking and financially motiva

UT

Utopia Tech

June 22, 2026 · 1 min read

Share

Cybersecurity researchers have disclosed details of a new campaign that delivers CastleStealer by means of a previously unreported malware loader dubbed OXLOADER. According to Elastic Security Labs, the campaign leverages malicious Google Ads as a starting point to distribute the malware. Evidence indicates that the threat actor is likely Russian-speaking and financially motivated, owing to the

Originally published at thehackernews.com

#Cybersecurity#Malware#Vulnerabilities
Share
▸ Want a deeper look?

Talk to an architect about applying this to your stack.

60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.

Schedule the call
▸ Continue reading

More from the journal

Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants
Security

Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants

1 min read

Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign
Security

Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign

1 min read

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests
Security

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests

1 min read

All posts
Skip to main content