EvilTokens is drawing attention in phishing investigations for abusing Microsoft Device Code authentication and hiding key parts of its attack flow from static URL analysis. In a recent analysis, the phishing page was found encrypted in the initial HTML response and appeared only after...

#Phishing #Windows #Browser

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

EvilTokens Hides Its Attack Flow in the Browser, Exposing Static Analysis Gaps

VERWANDTEARTIKEL

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

Fake Income Tax Assessment Notice Delivers RAT-Like Malware to Windows Users

PoC Exploit Released for Microsoft Exchange Server Elevation of Privilege Vulnerability

Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware

Amadey, StealC malware operations disrupted in Operation Endgame action

Browser-in-the-Browser Kit Uses Fake Software Errors to Deliver Malware Installers