Abuse of ISO Mounting to Deliver Phantom Stealer Malware on Windows Platforms cyberpress.org/iso-mount…
Seqrite Labs researchers have identified an active phishing campaign originating from Russia that delivers the Phantom information-stealing malware through deceptive payment confirmation emails.
The operation, named Operation MoneyMount-ISO, is aimed primarily at finance, accounting, and treasury divisions across Russian-speaking organizations, with secondary targeting of procurement, HR/payroll, and legal departments.
