Malware-as-a-Service (MaaS) distribution
Social Engineering (Fake CAPTCHA/ClickFix campaigns)
Malvertising (Google Ads)
Abuse of legitimate platforms (GitHub repositories)
AI-assisted creation of deceptive software repositories
Browser Fingerprinting (JavaScript-based system/hardware metadata collection)
Use of non-resident loaders for payload delivery
Infrastructure migration to Russian-based cloud services (e.g., Selectel)
Credential harvesting from browser extensions and 2FA tools