Windows SmartScreen bug targeted by new Mispadu trojan variant

Mexico has been subjected to attacks with a new variant of the Mispadu banking trojan that involved the exploitation of a high-severity Windows SmartScreen vulnerability patched by Microsoft in November, according to The Hacker News. Malicious ZIP archive files with internet shortcut files have been leveraged by threat actors to target the flaw, tracked as CVE-2023-36025, evade the warnings of SmartScreen, and later distribute Mispadu, which enables geographic and system configuration targeting before conducting data exfiltration activities, a report from Palo Alto Networks’ Unit 42 revealed.

Source: SC Magazine

 


Date:

Categorie(s):