Researchers have discovered threat attackers spreading a backdoor Trojan via the Notepad online notepad service. Named "WogRAT" by the industry for the use of the "WingOfGod" string by the operator behind the malware, the malicious code primarily targets Windows (PE format) and Linux (ELF format) systems. When attacking Windows, the malware disguises itself as utilities such as "flashsetup_LL3gjJ7.exe" or "BrowserFixup.exe" to lure victims. According to VirusTotal data, Asian countries and regions such as Hong Kong, Singapore, China and Japan are the main targets of the WogRAT malware. Security researchers suggest that users should avoid using untrusted executables and try to get programs from official sources for their daily work.
Attackers attack Windows and Linux systems via Notepad service
Previous: 英国最大外包公司因勒索攻击损失2.32亿元