HP Wolf Security has published a report that finds that the tactics and techniques being used by cybercriminals are evolving. In contrast, different cybercriminals continue to exploit weaknesses that are simple to exploit.
For example, cybercriminals use an advanced WikiLoader campaign to exploit open redirect vulnerabilities within websites to circumvent detection. Users are directed to trustworthy sites, often via fake advertisements, before being redirected to malicious sites.
Elsewhere, cybercriminals have been observed hiding malware inside HTML files that are fake delivery invoices which, once opened, unleash a series of events that result in AsyncRAT malware being deployed.