Vietnamese Hackers Target Job Seekers with 'Vampire Bot' Surveillance Malware

Beware of BatShadow's Vampire Bot malware targeting job seekers with fake PDFs, stealthily stealing sensitive data.

By Content Team

Oct 9, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A Vietnam-based cyber group called BatShadow is targeting job seekers and digital marketing professionals with malicious emails containing "Vampire Bot" malware. The sophisticated surveillance tool, written in Go, continuously captures screenshots and steals sensitive data from infected computers.

The attack works through zip files containing fake PDFs and hidden malicious executables. When victims open these files, PowerShell scripts quietly install the malware while displaying a decoy document. Vampire Bot then harvests system information, maintains persistence by hiding in core folders, and sends encrypted data to command servers.

Researchers at Aryaka Threat Research Labs say the campaign exploits job seekers' willingness to open career-related emails, making them prime targets for cybercriminals seeking extended system access.

Source: Dark Reading

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

MongoDB's 'Mongobleed' Vulnerability Actively Exploited, 87,000 Servers at Risk

Jan 2, 2026

Critical Microsoft Defender Flaws Let Attackers Bypass Security and Upload Malware

Oct 12, 2025

Cl0p Ransomware Gang Names 29 Victims in Oracle EBS Hack Campaign

Nov 10, 2025

Hackers Leak 5 Million Qantas Customer Records After Failed Ransom Demand

Oct 12, 2025