NetSupport RAT distributed in novel phishing campaign

20 March 2024

Intrusions commence with the delivery of salary-themed phishing emails with a Microsoft Word attachment, which when opened seeks a password to allow editing, as well as double-clicking that then triggers a ZIP archive file with a Windows shortcut file that leads to NetSupport RAT retrieval and execution, according to a report from Perception Point. “By using encrypted .docs to deliver the NetSupport RAT via OLE template and template injection, PhantomBlu marks a departure from the conventional TTPs commonly associated with NetSupport RAT deployments,”

Source: SC Magazine

Date:

20 March 2024

Categorie(s):

NEWS

Tag(s):

IT, News, RAT

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024