A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans (RATs) and cryptocurrency miners since November 2023. “Beyond cryptomining, the threat actor monetizes… Read MoreThe Hacker News
Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
-
- April 2, 2026
- 1 min read
