https://cybercrime.club/tags/tradecraft/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSun, 03 May 2026 23:11:52 -0400https://cybercrime.club/posts/deepdoor-python-backdoor-borepub-tunneling-c2-credential-stealer/Sun, 03 May 2026 23:11:52 -0400https://cybercrime.club/posts/deepdoor-python-backdoor-borepub-tunneling-c2-credential-stealer/Securonix details DEEP#DOOR, a Python backdoor that uses the public bore.pub TCP tunneling service for C2, disables Defender/SmartScreen via batch loader, and harvests browser-stored cloud credentials from compromised hosts.malware