Phishing attacks have increased across the board over the past year as companies continue to grapple with unique remote and hybrid work environment challenges.
The Nanocore RAT, Netwire RAT and AsyncRAT are being spread through a phishing email that contains a downloader with multiple layers of obfuscation.
A new lawsuit from Meta seeks to uncover the operators behind 39,000 phishing sites that have attempted to steal Facebook, Instagram and WhatsApp users' credentials.
Three APTs have been observed using RTF template injection, and researchers warn more threat groups may adopt the new tactic.
Microsoft researchers said TodayZoo, used for a massive campaign aimed at stealing victims’ credentials, was pieced together from an old phishing kit template.