Months long AsyncRAT campaign targeted key US infrastructure employees

A threat group has been hacking into US company employees’ accounts for the past 11 months using an open-source trojan program, AsyncRAT. The cyber attack launches phishing emails, continually generating new samples and domains to avoid being detected. The program was created on the online platform GitHub, offering easy access and cost-effectiveness to hackers. If successful, these attacks could provide key information about various American infrastructure firms.