Rhysida ransomware operators deliver their attacks via fake websites mimicking popular tools such as PuTTY and Google Authenticator. These malvertising campaigns trick users into downloading signed MSI installers that deploy OysterLoader, a multi-stage C++ loader first reported in mid-2024. Attackers use SEO poisoning and paid ads on Bing or Google to promote malicious sites impersonating […] The post Rhysida Ransomware Delivered via Fake PuTTY and Google Authenticator appeared first on Cyber Security News.