A new variant of the Bandook remote access trojan is spreading via phishing attacks, aimed at infiltrating Windows machines. Researchers at Fortinet FortiGuard Labs found the malware is distributed via a PDF with a link to a password-protected .7z archive. Once extracted, the malware injects itself into msinfo32.exe, modifying registry to establish persistence and establish contact with a C2 server to retrieve additional payloads and instructions.
Harvard’s Public-Health School Is on Life Support
As Andrea Baccarelli, the dean of Harvard’s School of Public Health, prepared to open a virtual town hall earlier this month, members of the university’s
