The new malware SectopRAT uses a multi-stage attack method that targets Windows users by appearing as a CAPTCHA verification prompt on compromised websites. The attack uses this security mechanism to plant the malware on the user’s device. The approach marks a troubling advancement in social engineering with experts saying sectors RAT, developed in Eastern Europe, is hard to detect and able to maintain continuous access by creating persistent backdoors.
Unpatched Windows Shortcut Vulnerability Let Attackers Execute Remote Code
Security researcher Nafiez disclosed a vulnerability in Windows LNK files that allows remote code execution without user interaction. Microsoft will not patch it, citing “inadequate
