A new malware campaign has been identified that exploits a vulnerability in Discord's invitation system to deliver malicious software, specifically Skuld and AsyncRAT. Attackers utilize vanity link registration to hijack expired or deleted invite links, covertly redirecting users from legitimate sources to harmful servers. This exploitation enables stealthy delivery of information stealers and remote access trojans. The campaign underscores a significant risk, as even once-trusted Discord invites can lead users to malicious sites, putting their digital assets at risk.
A new malware campaign exploits Discord's invitation system weakness to deliver Skuld and AsyncRAT, allowing attackers to redirect users to malicious servers.
Attackers hijacked links using vanity link registration to redirect users from trusted sources to malicious servers, leveraging ClickFix phishing and multi-stage loaders.
Collection
[
|
...
]