FlutterShell Malware Uses C2-Delivered JavaScript Payloads to Evade Sandbox Detection

Jun 23, 2026 10:35 AM

Tags: cyber, detection, endpoint, framework, macOS, malware, monitoring

Targeted macOS endpoint monitoring, the CL-CRI-1089 cluster tied to Operation FlutterBridge repurposes the Flutter framework to deliver a novel macOS malware family dubbed FlutterShell. Rather than rehashing prior campaign reporting, this piece treats recovered artifacts as a technical detection case study built from static analysis of ten Mach”‘O samples collected between December 2025 and March […] The post FlutterShell Malware Uses C2-Delivered JavaScript Payloads to Evade Sandbox Detection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/fluttershell-malware-uses-c2/

also interesting:

25 on 2025: APAC security thought leaders share their predictions and aspirations
Purdue 2.0? : Rising to the Challenge to secure OT with Zero Trust Connectivity
Cybersecurity Snapshot: Global Agencies Target Criminal “Bulletproof” Hosts, as CSA Unveils Agentic AI Risk Framework
Cybersecurity Snapshot: Global Agencies Target Criminal “Bulletproof” Hosts, as CSA Unveils Agentic AI Risk Framework

Collecting Cyber-News from over 60 sources

X
LinkedIn
RSS Feed
Mail

Here I provide a database that gathers and curates the latest news on Cybersecurity. Being well-informed is the key to successfully respond on security threats.

Imprint | Privacy Policy | Contact