Rhysida Weaponizes Ads to Deploy OysterLoader Malware
A highly sophisticated cyberattack campaign orchestrated by the Rhysida ransomware collective, which is distributing OysterLoader malware through malvertising. This campaign exploits legitimate advertising platforms, such as Bing, to push fraudulent links for popular software like PuTTY and Zoom, leading users to download malware disguised by the use of stolen and fraudulently obtained code-signing certificates. The overview also includes extensive information from a company named Technijian, which offers specialized cybersecurity services, including advanced threat detection and employee training, specifically designed to help organizations defend against this particular malvertising technique and the broader threat of initial access attacks.
