The threat actor delivers three Remote Access Trojans (RATs)—ValleyRAT, FatalRAT, and a newly discovered RAT dubbed kkRAT—via phishing sites hosted on GitHub Pages. These sites masquerade as legitimate software installers for popular applications. In each instance, a ZIP archive contains a malicious executable that initiates a multi-stage attack chain designed to evade analysis, disable endpoint […]The post kkRAT Exploits Network Protocols to Exfiltrate Clipboard Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.