A newly uncovered espionage operation has been quietly targeting government institutions in Cambodia, and the method behind it is as clever as it is alarming. Threat actors have been abusing a legitimate, digitally signed VMware binary to slip a custom malicious loader called NIGHTFORGE onto victim systems. This technique, known as DLL sideloading, lets attackers […]
The post Hackers Abuse VMware-Signed Binary to Sideload NIGHTFORGE Loader in Espionage Attacks appeared first on Cyber Security News.