Product
high
advisory
Threat Actors Abuse Microsoft ClickOnce Technology for Malware Distribution
3 rules 3 TTPsThreat actors are actively leveraging Microsoft's ClickOnce technology, a legitimate application deployment mechanism, to distribute and execute malware by exploiting its user-friendly deployment process that bypasses administrative privilege requirements.
ClickOnce technology
clickonce
malware
distribution
windows
deployment
endpoint
3r
3t
medium
advisory
Potential Abuse of Microsoft ClickOnce Technology for Malware Delivery
3 rules 3 TTPsThreat actors can abuse Microsoft's ClickOnce technology, which allows for simplified application distribution and installation with minimal user interaction and no administrative privileges, to easily spread malware and bypass traditional security controls through a 'click once' deployment.
ClickOnce technology
clickonce
windows
application-deployment
abuse-t1204.002
3r
3t