Gootkit is a Javascript-based malware platform capable of carrying out an array of covert activities. The malware delivery system comes amid a surge in the number of infections targeting users in France, Germany, South Korea, and the U.S. The infection chain resorts to sophisticated techniques that involve hosting malicious ZIP archive files on websites belonging to legitimate businesses that have been gamed to appear among the top results of a search query using manipulated search engine optimization (SEO) methods. Microsoft says it’s “seeing numerous extensive hands-on-keyboard attacks emanating from the Gootk malware”
Source: https://thehackernews.com/2021/03/gootkit-rat-using-seo-to-distribute.html