U.S.- and India-based organizations have been targeted by the new MULTI#STORM phishing campaign that involved a multi-stage attack chain concluding with the deployment of Warzone RAT, also known as Ave Maria, Quasar RAT, and various other remote access trojan backdoors, The Hacker News reports. Phishing emails sent by attackers include a link redirecting to a password-protected ZIP file on OneDrive, which when extracted would show an obfuscated JavaScript file, according to a Securonix report.
Source: SC Magazine