A recent phishing campaign targeting Windows machines is attempting to infect users with one of the most recent versions of the Agent Tesla remote access Trojan (RAT) Most of the attacks seem to have originated from IP addresses in Vietnam. The malicious attachment (AC 2021 09 V1.doc) is in fact a RTF document exploiting a known Microsoft Office vulnerability. Once accessed, the document downloads Agent Tesla malware. It exfiltrates the credentials and other sensitive data via the SMTP protocol (email) back to an email account registered in advance.”]