The Vidar spyware is spreading to PCs as threat actors have managed to hide it inside Microsoft Compiled HTML help files, and you can be infected in a click.

A new email malware campaign hides a malicious payload in what appears to be a Microsoft Compiled HTML Help file.

Threat actors are hiding Vidar spyware inside Microsoft Compiled HTML Help (CHM) files as part of an email spam campaign. Vidar can be used to steal information from a computer, such as user data.

On Thursday, Trustwave cybersecurity researcher Diana Lopera said the spyware is being concealed in Microsoft Compiled HTML Help (CHM) files to avoid detection in email spam campaigns.