Researchers warn that the code behind this remote access trojan has been tweaked in an attempt to decrease antivirus detection.

A new wave of document attacks targeting inboxes do not require enabling macros in order for adversaries to trigger an infection chain that ultimately delivers FormBook malware.

Malicious e-mail attachments used in this campaign don’t display any warnings when opened and silently install malware.

Adversaries are using the SMB communications channel to launch template injection attacks against the energy sector, including nuclear facilities.