Tag: watering hole

4 Attack Reports | 0 Vulnerabilities

Attack reports

Caution Against Watering Hole Attack and Malicious File Distribution Disguised as Unification Education Support Application

A watering hole attack targeting unification education program applicants has been discovered. The attackers uploaded malicious HWP document files to a notice board for an educational program. When opened, the file executes hidden malicious code through OLE objects. The malware creates persistence …

scheduled tasks

Published: March 11, 2025

Downloadable IOCs: 0

Recent Cases of Watering Hole Attacks, Part 1

This analysis focuses on a watering hole attack targeting a Japanese university research laboratory website in 2023. The attack used social engineering to trick users into downloading and executing malware disguised as an Adobe Flash Player update. The malware, identified as a modified Cobalt Strik…

social engineering

cobalt strike beacon

cloudflare workers

malware injection

flashupdateinstall.exe

Published: December 20, 2024

Downloadable IOCs: 10

A Website Attacked

This report investigates a watering hole attack on a U.S. apartment website that delivered malware by spoofing a fake browser update. The investigation uncovered dozens of other compromised websites from various industries like healthcare, retail, and consumer sites. The compromised sites loaded ma…

browser updates

compromised websites

Published: October 16, 2024

Downloadable IOCs: 72

SilentSelfie: Revealing a major campaign against Kurdish websites

A large-scale cyber espionage campaign targeting Kurdish websites was uncovered, involving 25 compromised sites using four variants of malicious scripts. The attacks ranged from simple location tracking to prompting users to install malicious Android apps. Despite lacking sophisticated techniques, …

cyber espionage

android malware

location tracking

Published: September 25, 2024

Downloadable IOCs: 0

Click here to see more Attack Reports