DarkGate Malware Spreading via Messaging Services Posing as PDF Files

It has been noted that the malware known as DarkGate is disseminated using instant messaging services like Microsoft Teams and Skype.

In these attacks, a loader script for Visual Basic for Applications (VBA) is delivered through messaging apps in the guise of a PDF document. When the PDF is read, an AutoIt script that launches malware is downloaded and executed.

“It’s unclear how the originating accounts of the instant messaging applications were compromised, however it is hypothesized to be either through leaked credentials available through underground forums or the previous compromise of the parent organization,” Trend Micro stated in a fresh analysis released Thursday read more DarkGate Malware Spreading via Messaging Services Posing as PDF Files.

Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *