National Cyber Warfare Foundation (NCWF)

Abusing Windows File Explorer and WebDAV for Malware Delivery
0 user ratings		2026-02-25 13:25:24
milo
Blue Team (CND)

Cofense Intelligence has identified a growing tactic in which threat actors abuse Windows File Explorer and WebDAV to deliver malware outside of traditional browser-based downloads. By leveraging URL and LNK shortcut files along with Cloudflare Tunnel infrastructure, attackers are disguising remote file servers as seemingly local resources and delivering multi-stage campaigns that frequently end in RAT infections. This report breaks down how the technique works, why it is effective, and what organizations can do to detect and mitigate this evolving threat.


The post Abusing Windows File Explorer and WebDAV for Malware Delivery appeared first on Security Boulevard.



Cofense

Source: Security Boulevard
Source Link: https://securityboulevard.com/2026/02/abusing-windows-file-explorer-and-webdav-for-malware-delivery/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.