<ul><li>Hackers are targeting people and businesses in Russia with malicious JavaScript to install backdoors on their devices.</li><li>The campaign, known as 'Horns&Hooves', started in March 2023 and has infected approximately 1,000 endpoints.</li><li>Phishing emails impersonating individuals and businesses are used to deliver the malicious JavaScript payload.</li><li>The payload deploys Remote Access Trojans (RATs), such as NetSupport RAT and BurnsRAT, to install infostealers like Rhadamanthys and Meduza.</li></ul>

Javascript files loaded with RATs hits thousands of victims

Discover more