A new malware campaign is exploiting a weakness in Discord’s invitation system to deliver an information stealer called Skuld and the AsyncRAT remote access trojan.
« Attackers hijacked the links through vanity link registration, allowing them to silently redirect users from trusted sources to malicious servers, » Check Point said in a technical report. « The attackers combined the ClickFix
