MixShell Malware Delivered via Contact Forms Targets U.S. Supply Chain Manufacturers

A sophisticated social engineering campaign, codenamed ZipLine, is targeting U.S. supply chain manufacturers with in-memory malware called MixShell. The attackers use legitimate business workflows, such as contacting companies through their “Contact Us” forms, to trick employees into downloading weaponized ZIP files. The campaign poses severe risks, including intellectual property theft, ransomware attacks, and supply chain disruptions.