Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » AutoIt used in targeted attacks to move RATs

AutoIt used in targeted attacks to move RATs

2015/08/25

Threatpost - (International) Security researchers at Cisco discovered that hackers are using the AutoIt task automation freeware to stealthily drop remote access trojans (RATs) that install via malicious macros in Microsoft Word documents. AutoIt is considered a legitimate information technology (IT) administration tool, and is often whitelisted in enterprises.

Source: https://threatpost.com/autoit-used-in-targeted-attacks-to-move-rats/114406

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:25:05