Signed Malware Impersonating Workplace Apps Used To Deploy RMM Backdoors
4mo ago
From the article
Microsoft's Defender Security Research Team has identified a series of phishing campaigns in which an unknown attacker used digitally signed malware masked as common workplace applications to deploy remote monitoring and management tools as persistent backdoors on targeted systems.
Continue reading on redmondmag.comYou might also wanna read
How Attackers Abuse Application Signing
Packetlabs·3y ago
Microsoft Device Code Phishing Campaign Targets M365 Accounts
Cyber Web Spider Blog·2d ago
MLTBackdoor: New Ransomware-Linked Backdoor Evades Detection via Microsoft Defender DLL Sideloading
MLTBackdoor is a newly identified backdoor malware family (observed May 2026) used by ransomware-affiliated threat actors for initial access
undercodetesting.com·28d ago
Phishing Campaign Leveraging the NPM Ecosystem
Snyk·9mo ago
North Korean Hackers Exploit Visual Studio Code to Deploy Backdoor Malware via Git Repositories
Jamf Threat Labs has identified North Korean threat actors expanding their abuse of Microsoft Visual Studio Code to deploy backdoor malware.
Microsoft 365 device code phishing campaign abuses legitimate login flow to target accounts
A Microsoft 365 device code phishing campaign observed in late June and early July 2026 abused Microsoft's legitimate device login flow to t
hendryadrian.com·2d ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.