Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

Tag: watering hole

3 attack reports | 0 vulnerabilities

Attack reports

Recent Cases of Watering Hole Attacks, Part 1

This analysis focuses on a watering hole attack targeting a Japanese university research laboratory website in 2023. The attack used social engineering to trick users into downloading and executing malware disguised as an Adobe Flash Player update. The malware, identified as a modified Cobalt Strik…

social engineering
cobalt strike
cobalt strike beacon
anti-analysis
cloudflare workers
watering hole
japan
2024-12-20
tips.exe
malware injection
system32.dll
flashupdateinstall.exe
university
Published: December 20, 2024

Downloadable IOCs 10

A Website Attacked

This report investigates a watering hole attack on a U.S. apartment website that delivered malware by spoofing a fake browser update. The investigation uncovered dozens of other compromised websites from various industries like healthcare, retail, and consumer sites. The compromised sites loaded ma…

malware
netsupport
spoofing
watering hole
2024-10-16
browser updates
compromised websites
Published: October 16, 2024

Downloadable IOCs 72

SilentSelfie: Revealing a major campaign against Kurdish websites

A large-scale cyber espionage campaign targeting Kurdish websites was uncovered, involving 25 compromised sites using four variants of malicious scripts. The attacks ranged from simple location tracking to prompting users to install malicious Android apps. Despite lacking sophisticated techniques, …

cyber espionage
2024-09-25
watering hole
android malware
kurdish
silentselfie
location tracking
rojava
Published: September 25, 2024

Downloadable IOCs 0

» Click here to see all Attack Reports «