Fenix Botnet Targeting LATAM Users
Researchers have uncovered a cyber campaign targeting Latin American users where victims are tricked into downloading a malicious zip file disguised as a legitimate tool from a fake website posing as the Government of Mexico. Once executed the payload installs a Remote Access Trojan (RAT) with infostealing capabilities and adds the compromised device to a botnet. This campaign is notable for its targeting of specific Latin American financial institutions with the RAT designed to intercept and steal banking credentials posing a significant threat to both individuals and corporations. The infection begins when users visit the deceptive webpage.