Attackers have launched a spearphishing campaign that abuses Windows screensaver (.scr) files to install legitimate remote monitoring and management (RMM) tools, granting persistent remote access without triggering classic malware alerts. This technique blends into normal IT operations, allowing escalation to credential theft, data exfiltration, or ransomware. ReliaQuest first spotted this across multiple customers, noting its […] The post Windows Screensaver Hijacked For Remote Access and RMM Tool Deployment appeared first on Cyber Security News.