Rewterz Threat Advisory – PHPGurukul Directory Management System SQL injection
July 22, 2020Rewterz Threat Alert – Chinese APT group targets India and Hong Kong
July 23, 2020Rewterz Threat Advisory – PHPGurukul Directory Management System SQL injection
July 22, 2020Rewterz Threat Alert – Chinese APT group targets India and Hong Kong
July 23, 2020Severity
Medium
Analysis Summary
A reported phish was seen on 07/23/2020 leveraging a fraudulent IT Helpdesk email enticing users to increase Outlook data limits to prevent email communication disruption. Actors may have connections to Operation Silver Terrier, a Nigerian based actor noted for Credential Harvesting and Password theft.
Impact
Credential theft
Indicators of Compromise
From Email
- swetlana[.]becker@elkw[.]de
IP
- 129[.]205[.]113[.]91
SHA1
- bc03e1780bdc514c9f70ce676eacb5dc2d4b59bb
Remediation
- Block all threat indicators at your respective controls.
- Always be suspicious about emails sent by unknown senders.
- Never click on the links/attachments sent by unknown senders.