Spear-Phishing Campaign Uses Proton Drive Links and LNK Files to Deliver SpyGlace

The APT-C-60 threat actor has continued targeting Japanese organizations with a spear-phishing campaign that abuses Proton Drive, Windows shortcut files, trusted developer platforms, and native Windows utilities to deliver the SpyGlace malware. While the group retains several established tradecraft elements,…