AsyncRAT Hides in Malicious SVGs Mimicking Portals

Cybercriminals have begun deploying AsyncRAT hides in malicious SVGs that mimic legitimate web portals, security researchers report. These Scalable Vector Graphics files are crafted to appear authentic while avoiding detection, as they do not require connections to external websites to function.

The deceptive SVGs leverage embedded scripts to initiate the download and execution of the remote access trojan. This technique enables attackers to bypass traditional web security filters and deliver payloads directly to unsuspecting users. AsyncRAT hides in malicious SVGs by blending into seemingly trustworthy graphical components, increasing the likelihood of user interaction.

Experts warn that this method complicates threat detection, as standard antivirus tools often overlook SVG-based threats. The tactic highlights a growing trend in cyberattacks that exploit trusted file formats to gain system access.

For more details on this developing threat and its implications, read the full article at
https://www.scworld.com/news/asyncrat-spread-through-malicious-svg-files-imitating-web-portals