Researchers have uncovered a new malicious campaign using voice phishing (vishing) to spread the DarkGate malware.
Adversaries masqueraded as a known client on a Microsoft Teams call, tricking victims into downloading AnyDesk for remote access and deploying malware.
The DarkGate malware facilitated remote control, offensive commands, data collection, and connection to a C2 server.
Mitigation measures include careful vetting of third-party technical support providers, cloud vetting processes, and implementation of multi-factor authentication (MFA).