Threat actors exploit the company certificates to sign the attachment to decept the anti virus. Goal: to let the victims download and install QBot malware.
Threat actors exploit company certificates to sign the attachment. Objective: to decept the anti virus and let the victims download and install QBot malware.
Institutions leveraged in daily-based campaigns. Last one exploits INPS. An xls attachment, different for each message, contacts a single link and downloads a DLL that activates malware infection.