Hackers Abuse Leaked Shellter Red Team Tool to Deploy Infostealers

Hackers abuse leaked Shellter red team tool to deploy infostealers

Shellter Project, the vendor of a commercial AV/EDR evasion loader for penetration testing, confirmed that hackers used its Shellter Elite product in attacks after a customer leaked a copy of the software.

Discovery of compromised Shellter security tool raises disclosure debate

CISOs whose staff use the commercial Shellter Elite antivirus evasion software to detect vulnerabilities need to immediately update to the latest version after the recent discovery that threat actors are using a stolen version to distribute malware. It’s not because the abuse of security tools is news — it isn’t. Threat actors have been leveraging stolen or copied versions of the Cobalt Strike adversary simulation tool for years to help in their…

Threat Actors Use AV/EDR Evasion Framework in the Wild to Deploy Malware Payloads

Elastic Security Labs has uncovered multiple campaigns leveraging SHELLTER, a commercial AV/EDR evasion framework originally designed for offensive security evaluations by red teams. Since late April 2025, threat actors …