Chaes, a threat group operates solely in Brazil, compromised hundreds of WordPress webpages to serve malicious installers which is the starting point of an interesting infection chain.
For several months now, we have been tracking malware called Guildma. Guildma is powerful combination of a RAT (remote access tool), spyware, password stealer and banker malware, mainly distributed via malicious attachments in phishing email campaigns. The cybercriminals behind Guildma have...