Employees at US-based organizations are being targeted with emails delivering NetSupport RAT malware via “nuanced” exploitation and by using an advanced detection evasion method. The malware campaign The campaign, dubbed PhantomBlu, takes the form of email messages purportedly coming from a legitimate accounting service. The attackers are leveraging a legitimate email delivery platform, “SendInBlue” or Brevo service, to evade detection. The phishing emails prompts recipients to download an attached Office Word file (.docx) to view … More
The post US organizations targeted with emails delivering NetSupport RAT appeared first on Help Net Security.