Read more: www.trendmicro.com
A new backdoor, named ‘More_eggs’, has emerged, specifically targeting recruiters using a spear-phishing campaign with malicious LNK files disguised as fake job applications. This attack vector, delivered through phishing emails, aims to infiltrate systems and provide attackers with unauthorized access. The malicious LNK files, when executed, silently download and run a Python distribution package containing a malicious Python script. This script is designed to establish persistence and provide the attacker with remote access to the compromised system. Organizations are urged to implement robust security measures, including email security solutions, employee training on phishing awareness, and regular security audits, to protect themselves from this evolving threat.