Watch out for SVG files booby-trapped with malware

The report documents a Latin America (primarily Colombia) phishing campaign that weaponizes oversized SVG files—embedding the full payload inside XML “SVG smuggling” lures that render fake judicial portals in the browser, prompt a password-protected ZIP download, and ultimately install AsyncRAT via DLL sideloading; the campaign produces unique, likely AI-generated files per target and includes sample indicators (SHA1, detection name) and telemetry showing active detections.