Hackers Use Fake Social Security Emails to Hijack PCs via ScreenConnect

Forcepoint X-Labs has identified a cyberattack campaign targeting organizations in the United Kingdom, United States, and Canada. The attackers are sending fraudulent emails impersonating the Social Security Administration (SSA) to trick victims into downloading a legitimate tool that has been misused, ScreenConnect, which is used to bypass Windows protections, including Windows SmartScreen. No specific vulnerability (CVE) or exact date is mentioned. The impact includes the hijacking of Windows workstations through the malicious exploitation of ScreenConnect to execute malicious actions.