Summary

The source describes a new phishing campaign called ‘CRON#TRAP’ that uses a malicious Linux virtual machine to bypass traditional antivirus protection and infect Windows devices. The attack involves sending a phishing email disguised as a survey invitation, which tricks users into installing a lightweight Linux VM preloaded with a backdoor that grants attackers remote access to the compromised system. This allows them to perform actions such as network scanning, file manipulation, and data exfiltration, ultimately posing a significant risk to organizations and individuals.

Dangerous New Phishing Campaign Infects Windows Devices with Malicious Linux VM
Technijian
Dangerous New Phishing Campaign Infects Windows Devices with Malicious Linux VM
Loading
/