Pick your Poison - A Double-Edged Email Attack

A sophisticated cyber-attack campaign has been identified, combining phishing techniques targeting Office365 credentials with malware delivery. The attackers use a file deletion reminder as a pretext, exploiting a legitimate file-sharing service to appear more credible. Upon opening a shared PDF file, users are presented with two hyperlinks: 'Preview' leads to a fake Microsoft login page for credential theft, while 'Download' initiates the installation of ConnectWise RAT malware. The malware establishes persistence through system services and registry modifications. This dual-threat approach emphasizes the need for user vigilance and education in recognizing phishing attempts and suspicious emails.

Pulse ID: 680fac69fa21735eedd5b785
Pulse Link: https://otx.alienvault.com/pulse/680fac69fa21735eedd5b785
Pulse Author: AlienVault
Created: 2025-04-28 16:27:21

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#ConnectWise #CyberSecurity #Edge #Education #Email #FileSharing #InfoSec #Malware #Microsoft #OTX #Office #OpenThreatExchange #PDF #Phishing #RAT #bot #AlienVault

"Piracy is on the rise! Not surprising considering how bad streaming has become. Why do we need so many subscriptions? The price is getting ridiculous, they've cracked down on password sharing and content has been spread too thin. May as well return to piracy where everything is in one central place."

https://www.youtube.com/watch?v=YjPXodrEgBc

#Streaming #Video #Filesharing #Copyright #Piracy

"The anti-piracy campaign was … not exactly subtle. Its spots ran before movies in theaters and on home media from 2004–2008. One shows a teen girl clicking a big green "Download" button on a website promising "Feature Films"—but when she does so, large white text jumps onto a black backdrop: "You wouldn't steal a car." The text looks like it was applied with spray paint and a stencil.

What font is this? The site Fonts in Use suggests it was FF Confidential, designed by Just van Rossum in 1992.

Melissa Lewis, a reporter at the Center for Investigative Reporting, noticed Fonts in Use's identification, and she remembered that noted "computer person" Parker Higgins had been digging into the "very similar (font) Xband Rough." Lewis contacted van Rossum, who confirmed that Xband Rough was a clone of FF Confidential. "It's just been around forever and is ubiquitous," Lewis writes.

Picking up on these inquiries, a tinkerer going by the handle "Rib" then dug into a PDF from the anti-piracy campaign's archived website. A tool called FontForge indicated that the notable "spray-painted" font used in the PDF was, in fact, XBand Rough.

Van Rossum—who is the brother of Guido van Rossum, creator of the Python programming language—told TorrentFreak that he knew the anti-piracy campaign had used his font, and he knew that the Xband Rough clone existed. He did not know that the industry group had used the knock-off version in its campaign, but he found it "hilarious." Van Rossum, reached for comment by Ars, declined to comment."

https://arstechnica.com/gadgets/2025/04/you-wouldnt-steal-a-car-anti-piracy-campaign-may-have-used-pirated-fonts/

#Piracy #Copyright #FileSharing #Typography #GraphicDesign

Who here is using upspin.io? Or has used it?

I'm taking any feedback and I'd love to chat about it, its strengths and weaknesses.

#upspin #golang #FileSharing

This detailed tutorial will contain step-by-step instructions on how you can install and set up NFS on Ubuntu 24.04.👇

https://greenwebpage.com/community/how-to-install-nfs-server-and-client-on-ubuntu-24-04/

#nfs #filesharing #ubuntu #linuxadministration #greenwebpage

Microsoft Teams File Sharing Unavailable Due to Unexpected Outage
https://gbhackers.com/microsoft-teams-file-sharing-unavailable/

#Infosec #Security #Cybersecurity #CeptBiro #MicrosoftTeams #FileSharing