Experts warn a key Microsoft legacy tool is still being abused to launch malware campaigns

MSHTA is being used for both simple and advanced threats, deploying loaders and infostealers.
CSO Online

Internet Explorer may be dead, but its ghost still runs malware

A legacy Windows scripting utility tied to Internet Explorer is still being used in modern malware campaigns, researchers say ...
Hosted on MSN

This new Windows malware hides in plain sight to install Remcos RAT

It does not crash systems or raise alarms. It blends into everyday Windows activity and works quietly in the background. By the time it is noticed, control may already be lost. Security teams are ...
Infosecurity-magazine.com

Raspberry Robin Distributed Through Windows Script Files

Threat actors distributing Raspberry Robin now use Windows Script Files (WSF) to spread the worm alongside other methods, such as USB drives. HP Threat Research identified new campaigns starting in ...