Malware-Delivery

Analysis of how GitHub is abused for malware delivery in 2026, including payload hosting, supply chain risks, and attacker evasion techniques.

Phishing is a social engineering technique where attackers impersonate trusted entities to steal credentials, deliver malware, or gain initial access. This SECMONS glossary entry explains phishing variants, operational impact, and defensive controls.

Drive-by compromise is an attack technique where malicious code is delivered to victims simply by visiting a compromised or malicious website, often exploiting browser vulnerabilities.

Technical explanation of drive-by download attacks, a technique in which malware is silently delivered to victims when they visit compromised or malicious websites.

Browser exploitation refers to attacks that target vulnerabilities in web browsers, plugins, or browser components to execute malicious code, steal credentials, or deliver malware to victims.

User execution is an attack technique where malicious actions occur after a victim opens a file, runs a program, or clicks a link that triggers malware execution.

Technical explanation of malware delivery techniques used by threat actors to distribute malicious software through email, compromised websites, and other intrusion vectors.