GodRAT Trojan Delivered via Skype Targets Trading Firms, Steals Files Using 20-Year-Old Gh0st RAT Code

A new remote access Trojan (RAT) named GodRAT has been identified targeting financial institutions, particularly trading firms. This malware is delivered through fake financial documents sent via Skype and uses steganography to conceal its presence. GodRAT is built on the 20-year-old Gh0st RAT code but incorporates enhanced capabilities, including stealing files, passwords, and deploying additional malware. The threat has been highlighted by cybersecurity sources such as Securelist and The Hacker News. Alongside GodRAT, recent cybersecurity reports have also discussed other risks, including major GitHub risk vectors, the RingReaper malware evading Linux endpoint detection and response systems, and broader security challenges posed by agentic AI, Apple intelligence, and electric vehicle chargers for businesses.