Extension Hijacks, Leaked Hacker Tools, Android Trojans, and Global Scam Networks

In today’s episode of the HEAL Security Dispatch, a malicious pull request infects thousands through a compromised Visual Studio Code extension, while a leaked copy of Shellter Elite enables widespread infostealer deployment. A trojanized Android app bypasses Google Play defenses to target North American banks, and a popular Chrome extension turns into spyware overnight. Meanwhile, Ingram Micro faces ransomware disruption, Qantas responds to an extortion attempt after a massive data breach, and over 17,000 fake news sites are uncovered in a global investment scam network. Stay with us as we unpack these escalating threats and the tools driving modern cybercrime.