SMS Spam Shipping Multi-Tool Targeting SaaS Credentials
Aug. 19, 2024, 5:24 p.m.
Tags
External References
Description
Xeon Sender is a Python script that enables threat actors to conduct SMS spam and smishing campaigns by leveraging legitimate APIs from nine different SaaS providers. It was first observed in 2022 and has been rebranded by various threat actors. The tool facilitates bulk SMS spam attacks, taking advantage of organizations with valid credentials and permissions for these services, enabling attacks without exploiting vulnerabilities. SMS spam and smishing are increasingly popular tactics executed through cloud and SaaS platforms.
Date
Published: Aug. 19, 2024, 5:14 p.m.
Created: Aug. 19, 2024, 5:14 p.m.
Modified: Aug. 19, 2024, 5:24 p.m.
Attack Patterns
Xeon Sender
T1587.003
T1592.002
T1589.001
T1588
T1598