← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Heatstroke Campaign Uses Multistage Phishing Attack to Steal PayPal and Credit Card Information
WHITE AlienVault 2019-09-03 Modified: 2019-09-03
5
IOCs
LOW VOLUME
Despite having an apparent lull in the first half of 2019, phishing will remain a staple in a cybercriminal’s arsenal, and they’re not going to stop using it. The latest example is a phishing campaign dubbed Heatstroke, based on a variable found in their phishing kit code. Heatstroke demonstrates how far phishing techniques have evolved — from merely mimicking legitimate websites and using diversified social engineering tactics — with its use of more sophisticated techniques such as steganography.
phishing
Indicators of Compromise (5)
All URL FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
URL https://posicionamientowebeconomico.es/wp-includes/ 2019-09-03
URL http://2m.ma/ar/ 2019-09-03
URL https://alphawolfden.com/.well-known/ 2019-09-03
URL http://raisingtwo.com/INC/ 2019-09-03
FileHash-SHA256 587368b3f679083010690cbc15df647a045f62f02ca86495d704d24fdb2eb5d6 2019-09-03
References (1)
↗ https://blog.trendmicro.com/trendlabs-security-intelligence/heatstroke-campaign-uses-multistage-phishing-attack-to-steal-paypal-and-credit-card-information/