TECH NEWS

'This reveals a broader security problem': Experts warn a key Microsoft legacy tool is still being abused to…

https://cdn.mos.cms.futurecdn.net/37uyEphcLreEFNUVCQzurn-2560-80.jpg
  • Bitdefender reports rising abuse of the legacy MSHTA utility to deliver infostealers and loader malware
  • Campaigns range from simple commodity threats like LummaStealer to advanced persistence tools such as PurpleFox
  • Defenders are urged to restrict outdated scripting utilities and deploy layered security controls to detect malicious script activity

Cybercriminals are increasingly using a legitimate legacy Windows tool to deploy infostealers and loader malware, researchers are saying.

A new Bitdefender report has claimed that since the start of 2026, there’s been an uptick in activity related to a Windows utility called Microsoft HTML Application Host (MSHTA), a legitimate utility that runs special HTML-based application files known as HTAs.

While normal web pages get opened in a browser, HTA files interact directly with the Windows operating system and can execute scripts with elevated privileges.

Simple and complex threats

MSHTA is an old tool that was originally designed for lightweight desktop and administrative...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more

https://www.politico.com/dims4/default/resize/1200/quality/90/format/jpg?url=https%3A%2F%2Fstatic.politico.com%2F76%2F2d%2F52b18eda4b919963ddc2d39f88ff%2Fgettyimages-2268688380-edit.jpg

Sources: the Pentagon is launching a task force to study how to safely deploy leading AI tools with hacking capabilities across Cyber Command and NSA missions

Sponsor Posts Niantic Spatial: World models need real-world data — Scaniverse is the gateway to spatial services — self-serve and built for AI and robotics. Large-area 3D reconstruction from 360° cameras and precise localization, anywhere machines operate. App Spotlight: Quo for Zoho CRM — App Spotlight brings you hand-picked solutions that enhance your