Hackers are spreading a fileless version of the Remcos Remote Access Trojan (RAT) via phishing emails. The emails carry Microsoft Excel files that exploit a vulnerability to execute remote code. Researchers from Fortinet explained that the new version of Remcos can steal sensitive information directly from a device’s memory. The best defense against such phishing attacks is cautious behaviour, such as reading emails carefully and being wary of downloading and running attachments.
SharePoint 0-Day RCE Vulnerability Actively Exploited in the Wild to Gain Full Server Access
A sophisticated cyberattack campaign targeting Microsoft SharePoint servers has been discovered exploiting a newly weaponized vulnerability chain dubbed “ToolShell,” enabling attackers to gain complete remote
