<ul><li>Security researchers have discovered fake DocuSign and Gitcode websites distributing malware through malicious PowerShell scripts.</li><li>The fake websites employ techniques like fake CAPTCHA and social engineering to trick victims into downloading a Trojan onto their systems.</li><li>The malware campaign, attributed to a group called SocGholish, uses multi-stage downloads to avoid detection and installs the NetSupport RAT on infected machines.</li><li>The attackers behind this campaign have been associated with other threat groups, and the malware distribution method is reminiscent of the ClickFix technique used in past malicious activities.</li></ul>

Fake DocuSign and Gitcode sites are tricking victims into downloading malware - here's what you need to know

Discover more