"Hackers Hiding Keylogger, RAT Malware in SVG Image Files"

Threat actors are using Scalable Vector Graphic (SVG) image files to hide malware and avoid detection. In January, researchers at Cofense Intelligence discovered a two-month campaign involving the use of SVG files to distribute Agent Tesla Keylogger and XWorm RAT malware. The SVG file format uses mathematical equations to describe images, allowing them to be scaled without losing image quality and making them suitable for various design applications. AutoSmuggle, an open-source tool released in May 2022, lets threat actors embed malicious files within SVG or HTML content to evade security measures such as secure email gateways. This article continues to discuss malicious campaigns involving the use of SVG files to hide and deliver malware.

DataBreachToday reports "Hackers Hiding Keylogger, RAT Malware in SVG Image Files"

Submitted by grigby1