A newly analyzed remote access trojan called PHANTOMPULSE has drawn serious attention for its advanced approach to compromising Windows systems. The malware is the final-stage payload in a broader attack chain known as REF6598, a threat cluster actively targeting the cryptocurrency sector. What...

#Malware #Windows

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

PHANTOMPULSE RAT Uses Process Injection and UAC Bypass to Compromise Windows Systems

VERWANDTEARTIKEL

Chinese hackers use new Atlas RAT malware in European cyberattacks

[High] CVE-2026-44609 – Local privilege escalation due to EXE hijacking vulnerability. The following pro...

[High] CVE-2026-50033 – Local privilege escalation due to DLL hijacking vulnerability. The following pro...

[High] CVE-2026-42061 – Local privilege escalation due to excessive permissions assigned to child proces...

HazyBeacon Camapign Weaponizes Amazon Web Services for Stealthy Communications

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT