SMS Spam Shipping Multi-Tool Targeting SaaS Credentials

Aug. 19, 2024, 5:24 p.m.

Description

Xeon Sender is a Python script that enables threat actors to conduct SMS spam and smishing campaigns by leveraging legitimate APIs from nine different SaaS providers. It was first observed in 2022 and has been rebranded by various threat actors. The tool facilitates bulk SMS spam attacks, taking advantage of organizations with valid credentials and permissions for these services, enabling attacks without exploiting vulnerabilities. SMS spam and smishing are increasingly popular tactics executed through cloud and SaaS platforms.

Date

Published: Aug. 19, 2024, 5:14 p.m.

Created: Aug. 19, 2024, 5:14 p.m.

Modified: Aug. 19, 2024, 5:24 p.m.

Attack Patterns

Xeon Sender

T1587.003

T1592.002

T1589.001

T1588

T1598