The PhantomCaptcha RAT attack targeted aid groups and Ukrainian government entities, using malicious PDFs and fake Cloudflare captcha pages to deploy a spying tool. This highly coordinated cyberattack lasted only 24 hours but showed meticulous planning and advanced evasion techniques.
