@kioan

42 Followers
70 Following
139 Posts
GitHubhttps://kioan.github.io
kioanMar 6, 2023

🆕 #phishing site,spotted on @ipfs:
🎣https[:]//bafybeiangb3bnzrecoj3kb6m3e2ohssnwh6ydhpcu6fvrgy6cazj64zwtu.ipfs.w3s[.]link/?filename=asiaGen.html#[email protected]

Stolen data sent to:
⤴https[:]//consultant-res[.]ro/images/dago98chd03e.php
☁️hosted by @ROMARG

#infosec #cybersecurity

kioanMar 6, 2023

New #phishing site, imitating @onedrive spotted on
@ipfs:
🎣https[:]//bafybeib23eozkxidvq7mvjsb25m6w27allwfxwrrfrnkaftstg5mj7rzqq.ipfs.w3s[.]link/

Stolen data sent to:
⤴https[:]//digivax[.]shop/docu1.php
☁️hosted by Tipzor Media SRL

#infosec #cybersecurity

kioanMar 6, 2023

New #phishing site, imitating @DocuSign spotted on @ipfs:
🎣https[:]//bafybeihlncagisfyukorgnauz45xsbk3vbloa4mbkeh4sl6izgpb4simky.ipfs.dweb[.]link/

Stolen data sent to:
⤴https[:]//digivax[.]shop/docu2.php
☁️hosted by Tipzor Media SRL

#infosec #cybersecurity

kioanMar 3, 2023

New #phishing site harvesting email credentials spotted on @ArweaveEco:
🎣https[:]//arweave.net/tlck-KeoMneAuWGofEhjzWKFWS-Fx7lY0ECJ1p10Xfs#[email protected]

Stolen data is sent to:
🎣https[:]//riviera[.]ge/js/stylesheets.php
☁️hosted by @G_R_E_N_A

#infosec #cybersecurity

kioanFeb 27, 2023

New #phishing campaign targeting @NationalBankGR customers spotted:
🎣https[:]//sharp-bassi.5-255-106-147.plesk[.]page/

Phisher uses @TLYShortener link in the email message:
🎣https[:]//t[.]ly/iCPG

#infosec #cybersecurity

kioanFeb 27, 2023

New #phishing site targeting #HellenicPost #ELTA spotted:
🎣https[:]//finyod[.]com/elta/
☁️ hosted by @Hetzner_Online
📧 sent via @SendGrid

#infosec #cybersecurity #IOC

kioanFeb 26, 2023

New #phishing campaign impersonating @govgr promises tax returns:
🎣https[:]//rich-perm[.]beer/bitrix/admin/mobile/zgovvf/

#infosec #cybersecurity

kioanFeb 26, 2023

New #phishing campaign targeting @NationalBankGR customers spotted:
🎣https[:]//seshegodigitalhub.co[.]za/wp-content/plugins/metform/controls/assets/-/
☁️hosted by @enablingict

The phishing site has been active since at least 2023-02-25.

#infosec #cybersecurity #IOC

kioanFeb 23, 2023

Another #phishing campaign in the form of an email with an HTML attachment has been spotted.
The attachment contains a fake login form which sends all submitted data to:
🎣https[:]//odinassetfinance.com[.]au/hye/Pedr.php
☁️hosted by #DigitalPacific

#infosec #cybersecurity

kioanFeb 23, 2023

New #phishing site spotted:
🎣https[:]//s3.amazonaws[.]com/appforest_uf/f1676846071283x523488290747208060/pagefem345.html#[email protected]
☁️hosted by #awscloud

⤴stolen credentials submitted to:
https[:]//domainersg[.]com/b:ms/spice.php
☁️hosted by #Hetzner_Online

#infosec #cybersecurity