Mastodawn

In H2 2025, #ESETresearch saw a thirtyfold increase in #CloudEyE detections, amounting to more than 100,000 hits over the course of six months. CloudEyE is a #MaaS downloader and cryptor used to conceal and deploy other malware, such as #Rescoms, #Formbook, and #Agent Tesla.
CloudEyE’s intital stage is a downloader that spreads via #PowerShell scripts, #JavaScript files, and #NSIS executables . These download the next stage – the cryptor component – with the final payload packed within. All of the CloudEyE stages are heavily obfuscated.
Most of CloudEyE attack attempts we registered in H2 2025 targeted Poland (32%). These attacks were part of a wave of email campaigns in Central and Eastern Europe ESET observed in September and October 2025.
In order to appear legitimate, the emails deployed in the campaign were often sent from compromised legitimate accounts and localized to the language of the targeted country. They were usually inquiries about invoice payments, package tracking, and purchase orders.
For further information on CloudEyE, cryptors, and more, head on over to the latest #ESETThreatReport: https://web-assets.esetstatic.com/wls/en/papers/threat-reports/eset-threat-report-h22025.pdf

FredPlus10 Jun 8, 2024

"A lovely coding experience with elements of PHP and assembly (includes user variables, a stack, real flow control, etc.)"

(From the feature list of #NSIS, the #Nullsoft Installer)

Am I the only one who loves the comfort of a high-level language?

Lawrence Murray Jul 27, 2023

Windows progress 🙂 #cpp #cplusplus #opensource #nsis #cmake #windows #programming

ゆっきー Jul 9, 2023

雑描きまーとめ♡♡
#kiis #nsis

78(なや)Jul 2, 2023

わたしがマストドンの希望の光になる！
#nsis

Gioxx Apr 11, 2023

#Windows10: Bloccare la richiesta di upgrade a #Windows11 | #NSIS #GitHub https://gioxx.org/2023/04/11/windows-10-bloccare-la-richiesta-di-upgrade-a-windows-11/

Windows 10: Bloccare la richiesta di upgrade a Windows 11

Windows 10 (a voler essere precisi la sezione relativa agli aggiornamenti di Windows, nelle Impostazioni) integra un controllo che gli permette di verificare

Gioxx.org

Gioxx Mar 30, 2023

#Notepad++: #installer personalizzato e sempre aggiornato | #GitHub #OpenSource #NSIS https://gioxx.org/2023/03/30/notepad-installer-personalizzato-e-sempre-aggiornato/

Notepad++: installer personalizzato e sempre aggiornato

Ereditando in parte quanto già fatto con SWUpdates, rilevo la versione di Notepad++ più aggiornata, la scarico in locale, la installo chiedendole di:

Gioxx.org

Tim Fedak, PhD Nov 14, 2022

This is the #NovaScotia born geologist Elizabeth King (1923-2010) at the age of 12 standing in front of an outcrop holding her #geology hammer. Elizabeth went on to work for the #USGS for over 60 years. Learn about her fascinating story at: https://ojs.library.dal.ca/nsis/article/download/nsis51-2fedak/9927

#womeninscience #aeromagnetic #BayofFundy #astronomy #NSIS

ITSEC News May 15, 2020

RATicate Group Hits Industrial Firms With Revolving Payloads - A new threat group uses NSIS as an installer to target industrial companies with revolving payload... more: https://threatpost.com/raticate-group-industrial-firms-revolving-payloads/155775/ #malwarecampaign #nsisinstaller #agenttesla #formbook #nsisfile #raticate #malware #betabot #lokibot #netwire #payload #sophos #hacks #nsis

RATicate Group Hits Industrial Firms With Revolving Payloads

A new threat group uses NSIS as an installer to target industrial companies with revolving payloads, including LokiBot, FormBook, BetaBot, Agent Tesla and Netwire.

Threatpost - English - Global - threatpost.com