{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreihqq5azsalqjttnlsblf64gb7ivkrje3y63w63oo4qv5cz6qcoysi",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mptz36kf4yc2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreifqxytu5agn2d4oc5v3zyrg4tre662sdni4qlkl7lxvewuohsg7xi"
    },
    "mimeType": "image/webp",
    "size": 15158
  },
  "path": "/hackers-use-fake-cisco-anyconnect-and-google-update-installers-to-drop-sharkloader/",
  "publishedAt": "2026-07-04T06:16:25.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Hackers Use Fake Cisco AnyConnect and Google Update Installers to Drop SharkLoader",
    "VPN Central"
  ],
  "textContent": "Security researchers have uncovered a campaign called StrikeShark that uses a custom malware loader named SharkLoader to deploy Cobalt Strike Beacon on compromised Windows systems. The campaign uses two main entry paths. Attackers exploit known vulnerabilities in internet-facing enterprise software and also distribute fake installers that pretend to be trusted tools such as Cisco AnyConnect […]\n\nThe post Hackers Use Fake Cisco AnyConnect and Google Update Installers to Drop SharkLoader appeared first on VPN Central.",
  "title": "Hackers Use Fake Cisco AnyConnect and Google Update Installers to Drop SharkLoader"
}