Cybersecurity firm VMware Carbon Black has identified 15 new infections where NetSupport RAT, a remote access trojan, was utilized by threat actors in phishing campaigns aimed at the education, government and business sectors. Typically downloaded via deceptive websites or fake browser updates, the trojan allows malicious actors to manipulate computer settings, transfer files, and monitor behavior on the device.
Hackers Abuse Avast Anti-Rootkit driver To Evade Detection
A malicious campaign has been discovered where malware, detected as kill-floor.exe, uses the legitimate Avast Anti-Rootkit driver to bypass detection and gain deep access to
