Attackers abuse Windows Finger command to download malware
The Finger command is a utility that allows a local user to get a list of users on a remote machine or to get information about a particular remote user. This week, security researcher Kirk Sayre found a phishing campaign abusing the Finger command to download the MineBridge backdoor malware. The malware uses phishing emails containing malicious Word documents disguised as a resume from a job applicant. Read more...