#remote-access-trojan-rat

[ follow ]
#phishing #clickfix #hospitality-sector-targeting #transparent-tribe-apt36 #spear-phishing-lnk-delivery
Information security
fromZDNET
5 days ago

Watch out! This fake Windows BSOD is a trap

Attackers use fake BSOD, fake CAPTCHA and ClickFix social engineering to trick users into pasting code that installs a Russian-linked RAT enabling remote PC takeover.
fromThe Hacker News
1 week ago

Transparent Tribe Launches New RAT Attacks Against Indian Government and Academia

The latest set of attacks began with a spear-phishing email containing a ZIP archive with a LNK file disguised as a PDF. Opening the file triggers the execution of a remote HTML Application (HTA) script using "mshta.exe" that decrypts and loads the final RAT payload directly in memory. In tandem, the HTA downloads and opens a decoy PDF document so as not to arouse users' suspicion.
Information security
[ Load more ]