What is BiteLoader?

BiteLoader is a multi-stage malvertising framework identified by The Media Trust that hides malicious JavaScript inside banner images using steganography. Once executed, it profiles devices, disables monitoring APIs, and forces phishing redirects, particularly in mobile and in-app environments. It bypasses security controls by embedding payloads in image pixel data, dynamically reconstructing scripts at runtime, abusing Trusted Types to evade Content Security Policy protections, encrypting fingerprinting data, and disabling browser networking APIs to reduce detection visibility. Learn More by downloading the full technical report.