← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Heatstroke Campaign Uses Multistage Phishing Attack to Steal PayPal and Credit Card Information
WHITE AlienVault 2019-08-29 Modified: 2019-08-29
6
IOCs
LOW VOLUME
Despite having an apparent lull in the first half of 2019, phishing will remain a staple in a cybercriminal’s arsenal, and they’re not going to stop using it. The latest example is a phishing campaign dubbed Heatstroke, based on a variable found in their phishing kit code. Heatstroke demonstrates how far phishing techniques have evolved — from merely mimicking legitimate websites and using diversified social engineering tactics — with its use of more sophisticated techniques such as steganography.
HeatstrokephshingAmazonpaypal
Indicators of Compromise (6)
All URL
TYPEINDICATORDESCRIPTIONCREATED
URL https://raisingtwo.com/INC/signin/-/PPL-ID/app/signin 2019-08-29
URL https://posicionamientowebeconomico.es/wp-includes/ 2019-08-29
URL https://www.posicionamientowebeconomico.es/wp-includes/css/signin.html 2019-08-29
URL http://2m.ma/ar/ 2019-08-29
URL http://raisingtwo.com/INC/ 2019-08-29
URL https://alphawolfden.com/.well-known/ 2019-08-29
References (1)
↗ https://blog.trendmicro.com/trendlabs-security-intelligence/heatstroke-campaign-uses-multistage-phishing-attack-to-steal-paypal-and-credit-card-information/