Analyzing CryptoJS Encrypted Phishing Attempt

Posted on April 9, 2024

ARC Labs recently analyzed a phishing email used in a credential harvesting campaign that leveraged a lure notifying the target they received a voice message and needed to visit a link to access it. Analysis of the payload revealed heavily obfuscated HTML data which executed JavaScript code embedded within an SVG image when the page […]

The post Analyzing CryptoJS Encrypted Phishing Attempt appeared first on Binary Defense.

Related Posts

TorrentLocker — Ransomware in a country near you

Critical GitHub Enterprise Server Authentication Bypass bug. Fix it now!

CosmicBeetle joins the ranks of RansomHub affiliates – Week in security with Tony Anscombe

GitLab fixed a critical zero-click account hijacking flaw