Threat actors are using fake websites mimicking popular video conferencing platforms, such as Google Meet, Skype, and Zoom, to distribute Remote Access Trojans (RATs) targeting Android and Windows users. The malicious sites, hosted on domains resembling legitimate ones, offer downloads for Android, iOS, and Windows platforms. Clicking on the Android download button retrieves an APK file, while the Windows button triggers the download of a batch script, leading to the execution of a PowerShell script and subsequent deployment of the RATs. The attackers use typosquatting tricks to lure victims into downloading malware.