Microsoft Word documents exploiting known remote code execution flaws are being used as phishing lures to drop malware calledLokiBoton compromised systems. “LokiBot, also known as Loki PWS, has been a well-known information-stealing Trojan active since 2015,” Fortinet FortiGuard Labs researcher Cara Linsaid. “It primarily targets Windows systems and aims to gather sensitive information from