Cybersecurity experts have uncovered the โPhantom Enigmaโ campaign, which targets Brazilian users and organizations globally through malicious browser extensions and RATs. The campaign focuses on stealing sensitive authentication data using sophisticated payloads and multi-vector attacks. #MeshAgent #PDQConnectAgent
Keypoints
- The campaign primarily targets Brazilian residents and organizations worldwide, especially those using banking services like Banco do Brasil.
- Attackers deploy phishing emails that lure victims into downloading malicious files or clicking malicious links.
- Malicious browser extensions and RATs are used to harvest login data and facilitate network infiltration.
- Scripts disable security features and check for sandbox environments to evade detection during deployment.
- Over 722 malicious extensions were downloaded before removal, impacting multiple countries and highlighting the campaignโs widespread reach.
Read More: https://gbhackers.com/new-malware-attack-uses-malicious-chrome-edge-extensions/