A phishing malware campaign, known as Shadow Vector, has been reported, targeting users in Colombia through malicious SVG files disguised as urgent court notifications. The campaign uses the MITRE ATT&CK technique known as SVG smuggling, where scalable vector graphics are used to embed or link malicious content. It begins with spear-phishing emails containing SVG attachments, which, when rendered in a browser, redirect victims to download payloads from public platforms like Bitbucket, Dropbox,
asyncrat (3)
HP Wolf Security has published a report that finds that the tactics and techniques being used by cybercriminals are evolving. In contrast, different cybercriminals continue to exploit weaknesses that are simple to exploit. For example, cybercriminals use an advanced WikiLoader campaign to exploit open redirect vulnerabilities within websites to circumvent detection. Users are directed to trustworthy sites, often via fake advertisements, before being redirected to malicious sites. Elsewhere, c
Activity Summary - Week Ending on 24 May 2024:
- Red Sky identified 6,686 connections from ‘new’ unique IP addresses
- contabo[.]com in Germany hit 29x
- 92 ‘new’ Botnets hits
- Cat-Phishing
- BITS
- AsyncRAT
- Protecting OT Networks
- UK Army Personnel
- Red Hat Downsizing
Link to full report: IR-24-145-001_weekly145.pdf