Phishing Campaign Installing NetSupport Manager RAT
released on 2020-02-27 @ 04:08:16 PM
"In January 2020, Unit 42 identified a malicious Microsoft Word document, disguised as a password-protected NortonLifelock document, being used in a phishing campaign to deliver a commercially available remote access tool (RAT) called NetSupport Manager. Using a fictitious NortonLifelock document to entice the user to enable macros makes this particular attack interesting to us."