PDF Phishing Leads to Nanocore RAT, Targets French Nationals

October 12, 2017

Recently, FortiGuard Labs found a phishing campaign targeting French Nationals. In this campaign, a PDF file with an embedded javascript is used to download the payload from a Google Drive shared link. As it turns out, the downloaded file is an HTA (HTML Application) file, a format that is becoming more and more common as a malware launch point. It is usually used as a downloader for the actual binary payload. However in this campaign,...

Read more...

Previous Article
Securing Legacy IT Systems from Modern Application Threats in the Financial Sector
Securing Legacy IT Systems from Modern Application Threats in the Financial Sector

The rhetoric surrounding mainframes and their uses in modern enterprises tends to be largely negative. Main...

Next Article
OT and IT: A Fight Over the Control of Digital Ground
OT and IT: A Fight Over the Control of Digital Ground

This change is also causing OT and IT to fight over the control of digital ground. While OT is growing, it ...