Tag
medium
advisory
Abuse of Microsoft ClickOnce Technology for Malware Deployment
3 rules 3 TTPsThreat actors are leveraging Microsoft's ClickOnce technology, designed for simplified application deployment, as an attractive vector to spread malware, allowing for easy distribution, minimal user interaction, and installation without elevated privileges on Windows systems.
ClickOnce
deployment
windows
malware-distribution
application-deployment
3r
3t
high
advisory
Threat Actors Abuse Microsoft ClickOnce Technology for Malware Distribution
3 rules 3 TTPsThreat actors are actively leveraging Microsoft's ClickOnce technology, a legitimate application deployment mechanism, to distribute and execute malware by exploiting its user-friendly deployment process that bypasses administrative privilege requirements.
ClickOnce technology
clickonce
malware
distribution
windows
deployment
endpoint
3r
3t