The attackers have been using phishing emails that contain a link to a Google Drive or Dropbox file, which, when clicked, downloads the malicious Python script.
A new cyber attack campaign has been discovered by security researchers at Securonix, targeting organisations using a Python-based malware called PY#RATION.
According to the company, the malware exhibits remote access trojan (RAT) behaviour, allowing for control of and persistence on the affected host. As with other RATs, PY#RATION possesses a host of features and capabilities.
The attack campaign has been primarily targeting organisations in the healthcare and finance industries, but any organisation that uses Python-based systems is at risk. The attackers have been using phishing emails that contain a link to a Google Drive or Dropbox file, which, when clicked, downloads the malicious Python script.