Discord exploited in nation-state attacks against critical infrastructure

18 October 2023

State-sponsored hacking operations have begun leveraging Discord to facilitate cyberattacks against critical infrastructure organizations as evidenced by the presence of an artifact aimed at such entities in Ukraine discovered in the instant messaging and VoIP social platform, reports The Hacker News. Trellix researchers discovered that the artifact, a Microsoft OneNote file sent through an email address impersonating the nonprofit organization Dobro that used donations to Ukrainian soldiers as lures, enabled the execution of a Visual Basic Script and a pair of PowerShell scripts that exploit a Discord webhook for system metadata exfiltration.

Source: SC Magazine

Date:

18 October 2023

Categorie(s):

NEWS

Tag(s):

Discord, IT, News

Dating apps kiss’n’tell all sorts of sensitive personal info4 May 2024
Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024