A recently discovered cyber campaign is targeting Chinese-speaking users in Asia with a previously undocumented remote access trojan (RAT) known as AtlasCross RAT.
The campaign involves the use of typosquatted domains that impersonate trusted software brands, including VPN clients, encrypted messengers, video conferencing tools, cryptocurrency trackers, and e-commerce applications.
According to reports, at least eleven domains have been confirmed to be delivering the AtlasCross RAT, highlighting the scope and complexity of the operation.
The use of fake domains and the AtlasCross RAT suggests a high level of sophistication and planning on the part of the attackers, who are likely seeking to gain unauthorized access to sensitive information and systems.
Users in Asia, particularly those who speak Chinese, are advised to exercise caution when clicking on links or downloading software from unfamiliar sources, as the campaign is ongoing and continues to evolve.
Further research is needed to fully understand the scope and implications of the Silver Fox campaign, but it is clear that the use of AtlasCross RAT and fake domains poses a significant threat to individuals and organizations in the region.
Source: Original Article
