Monitor SG48m ago

Detected #SmartApeSG infection chain

Compromised site
-->
ibharcan[.]com/q (injected)
-->
velvetcrossing[.]top/profile/callback-schema.js
-->
velvetcrossing[.]top/profile/private-sessionstore
-->
velvetcrossing[.]top/profile/logout-state.js (clickfix)

Monitor SG1h ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/d.js (injected)
-->
cobaltmeadow[.]top/profile/callback-schema.js
-->
cobaltmeadow[.]top/profile/private-sessionstore
-->
cobaltmeadow[.]top/profile/logout-state.js (clickfix)

Monitor SG21h ago

Detected #SmartApeSG infection chain

Compromised site
-->
divinenarratives[.]org/d.js (injected)
-->
ivoryharvest[.]top/refresh/legacy-layout.js
-->
ivoryharvest[.]top/refresh/login-fetch
-->
ivoryharvest[.]top/refresh/oauth-thread.js (clickfix)

Monitor SG22h ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/d.js (injected)
-->
ivoryharvest[.]top/refresh/legacy-layout.js
-->
ivoryharvest[.]top/refresh/login-fetch
-->
ivoryharvest[.]top/refresh/oauth-thread.js (clickfix)

OTX Bot1d ago

SmartApeSG Launches Okendo Reviews Supply Chain Attack

Security researcher ThreatLabz has identified a supply chain attack involving a popular customer review platform, known as Okendo Reviews, which has been compromised by the SmartApeSG threat actor, who used JavaScript to deliver malware.

Pulse ID: 6a38d580a99b572f5909f029
Pulse Link: https://otx.alienvault.com/pulse/6a38d580a99b572f5909f029
Pulse Author: CyberHunter_NL
Created: 2026-06-22 06:26:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #Java #JavaScript #Malware #OTX #OpenThreatExchange #SmartApeSg #SupplyChain #ThreatLabz #bot #CyberHunter_NL

LevelBlue - Open Threat Exchange

Learn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.

LevelBlue Open Threat Exchange
Monitor SG3d ago

Detected #SmartApeSG infection chain

Compromised site
-->
www[.]ski-snowboardvancouver[.]ca/d.js (injected)
-->
ivorycourtyard[.]top/middleware/role-render.js
-->
ivorycourtyard[.]top/middleware/version-schema
-->
ivorycourtyard[.]top/middleware/endpoint-asset.js (clickfix)

Monitor SG3d ago

Detected #SmartApeSG infection chain

Compromised site
-->
thesnackbee[.]com/d.js (injected)
-->
coralregistry[.]top/middleware/role-render.js
-->
coralregistry[.]top/middleware/version-schema
-->
coralregistry[.]top/middleware/endpoint-asset.js (clickfix)

Monitor SG4d ago

Detected #SmartApeSG infection chain

Compromised site
-->
ivorycourtyard[.]top/middleware/version-schema
-->
ivorycourtyard[.]top/middleware/endpoint-asset.js (clickfix)

Monitor SG4d ago

Detected #SmartApeSG infection chain

Compromised site
-->
thesnackbee[.]com/d.js (injected)
-->
cedarlanternhub[.]top/token/private-sandbox.js
-->
cedarlanternhub[.]top/token/callback-compiler
-->
cedarlanternhub[.]top/token/session-json.js (clickfix)

Monitor SG4d ago

Detected #SmartApeSG infection chain

Compromised site
-->
ivorycompass[.]top/token/callback-compiler
-->
ivorycompass[.]top/token/session-json.js (clickfix)