Credential Theft and Remote Access Surge as AllaKore, PureRAT, and Hijack Loader Proliferate

Threat actors are targeting Mexican organizations with a modified version of AllaKore RAT and SystemBC, delivered through phishing or drive-by compromises. The RAT, designed to steal banking credentials and authentication information, is part of a long-running campaign by a financially motivated group called Greedy Sponge. Additionally, other remote access trojans like PureRAT, Neptune RAT, and Hijack Loader are being distributed through various means, including crypter-as-a-service offerings and malicious Inno Setup installers.