In March, JFrog Security Research documented a malware campaign titled GhostClaw/GhostLoader. Since the original documentation of this campaign, Jamf Threat Labs examined multiple GitHub repositories associated with this same activity, including at least eight newly identified samples. While analyzing these repositories, Jamf uncovered additional infrastructure and previously undocumented infection vectors, demonstrating that this campaign extends […]
