Signal
Storm-2561 uses SEO poisoning to distribute trojanized VPN clients targeting enterprises
The cybercriminal group Storm-2561 has been hijacking search engine results to promote fake VPN clients from major vendors such as Cisco, Fortinet, CheckPoint, and others.
rss
cveexploitsmalwarethreat_actorsincident_response
Evidence locked
Today's free sample is only available for the edition's flagship signal.
Evidence preview
- CSO Onlinecsoonline.com
- Credential-stealing crew spoofs VPN clients from Cisco, Fortinet, and otherstheregister_security
- Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal CredentialsThe Hacker News