"DarkGate Malware Exploits Unpatched Windows Flaw in Zero-Day Attack"
A DarkGate malware campaign exploited a recently patched Microsoft Windows flaw in a zero-day attack, using bogus software installers and Google DoubleClick Digital Marketing open redirects to lead victims to compromised sites hosting the vulnerability. The attack chain involved phishing emails with PDF attachments, open redirects, and fake software installers to deliver the DarkGate malware. Additionally, counterfeit installers for popular software like Adobe Reader and Notion are being used to distribute information stealers, while new stealer malware families like Planet Stealer and Tweaks are being exploited through platforms like YouTube and Discord. Malvertising and social engineering campaigns are also being used to disseminate a wide range of stealer and remote access trojans.