A newly analyzed remote access trojan called PHANTOMPULSE has drawn serious attention for its advanced approach to compromising Windows systems. The malware is the final-stage payload in a broader attack chain known as REF6598, a threat cluster actively targeting the cryptocurrency sector. What makes PHANTOMPULSE particularly dangerous is how it chains multiple advanced techniques together […]
The post PHANTOMPULSE RAT Uses Process Injection and UAC Bypass to Compromise Windows Systems appeared first on Cyber Security News.