English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#htmlsmuggling search results

Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
Oct 5, 2022

2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1

Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
1
87
197
27
0
abhishek102938's profile picture. Founder, CTO@inceptioncyber.ai Top 5 Innovators (Executive, Practitioner) of the Year 2025 @SCMagazine. Nominee Péter Szőr Award @virusbtn AI, CyberSecurity.
Abhishek
 @abhishek102938
Feb 25

Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling

abhishek102938's tweet image. Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling
0
1
1
0
137
blueteamsec1's profile picture. The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Blue Team News
@blueteamsec1
Oct 22, 2023

HTMLSmuggler - HTML Smuggling Generator And Obfuscator For Your Red Team Operations dlvr.it/SxpPF1 #HTMLSmuggler #Htmlsmuggling #Opsec #Redteam

blueteamsec1's tweet image. HTMLSmuggler - HTML Smuggling Generator And Obfuscator For Your Red Team Operations dlvr.it/SxpPF1 #HTMLSmuggler #Htmlsmuggling #Opsec #Redteam
0
12
40
10
6K
RecordedFuture's profile picture. Recorded Future. Know what matters. Act first.
Recorded Future
 @RecordedFuture
Sep 19, 2022

The webpage is a Base64-encoded ISO file that is deployed, with automatic download, via the #HTMLsmuggling technique. Of note, the for loop on lines 26 to 28 can run into an error, likely a UAC-0113 operator error, especially given the immutability of string objects in JS. 8/9

RecordedFuture's tweet image. The webpage is a Base64-encoded ISO file that is deployed, with automatic download, via the #HTMLsmuggling technique. Of note, the for loop on lines 26 to 28 can run into an error, likely a UAC-0113 operator error, especially given the immutability of string objects in JS. 8/9
2
2
4
0
0
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 6, 2022

#ln -s :malware_traffic: 2022-10-06 (Thursday): Still seeing thread-hijacked #malspam using #HTMLsmuggling to distribute #Qakbot (#Qbot). Even my most ridiculous emails get thread-hijacked.

0
0
0
0
0
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 7, 2022

#ln -s :malware_traffic: 2022-10-06 (Thursday): #HTMLsmuggling led to #IcedID using didociskal[.]com & dietappli[.]shop, which led to #CobaltStrike stager at hxxp://199.127.60[.]47/download/4.dll, then CobaltStrike C2 on 64.44.101[.]15:443 using yebicida…

0
0
0
0
0
iAngelus's profile picture. Scio me nihil scire. #ThreatIntel/#CTI now; was #IncidentResponse/#IR. Humanities (AB Φ, Comm) grad, ex-seminarian (λόγος). Impostor Syndrome ∞. Opinions∴mine.
ac@t:~#
 @iAngelus
Oct 30, 2022

sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript

iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
0
5
6
0
0
JaytheletterJ's profile picture. Field CTO, #MSEE, #JD, @tbtaonline COB, VC Advisor, FFREF COB, @usouthflorida/@UofSC_CEC/@stetsonlaw alum, etc
J Stephen Kowski
@JaytheletterJ
Oct 9, 2023

Discover how HTML Smuggling Phishing Attacks have evolved in 2023 with a new layer of obfuscation, making them harder to detect. Stay updated on this emerging cyber threat. #business #technology #HTMLSmuggling #PhishingAttack #CyberSecurity #EmailSecurity #InfoSec #CyberThreat

JaytheletterJ's tweet image. Discover how HTML Smuggling Phishing Attacks have evolved in 2023 with a new layer of obfuscation, making them harder to detect. Stay updated on this emerging cyber threat. #business #technology #HTMLSmuggling #PhishingAttack #CyberSecurity #EmailSecurity #InfoSec #CyberThreat…
0
0
0
0
58
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 5, 2022

#ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…

cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
0
0
0
0
0
Nullblr's profile picture. The Bangalore chapter of India's largest open security community, NULL @null0x00.
Null Bangalore
 @Nullblr
Jun 21

3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling

Nullblr's tweet image. 3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling
0
0
4
0
376
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Dec 14, 2022

#ln -s :malware_traffic: @Unit42_Intel 2022-12-13 (Tuesday) - More #HTMLsmuggling leading to #CobaltStrike. Same IP address for Cobalt Strike C2 and same persistence mechanism, but this time it's HTML file --> .js --> HTTP traffic for .ps1 --> Cobalt St…

0
0
0
0
0
AcooEdi's profile picture. high level of job #Security #websitesecurity #dataprotection #privacy #hacker #malware #Pentesting #Infosec #Tech #Technology
EdiAcoo
 @AcooEdi
Dec 13, 2022

HTML smugglers turn to SVG images dlvr.it/SfKHMH #Qakbot #HTMLSmuggling via TalosSecurity

AcooEdi's tweet image. HTML smugglers turn to SVG images dlvr.it/SfKHMH #Qakbot #HTMLSmuggling via TalosSecurity
0
1
0
0
0
SecurityJosh's profile picture. 💻 Security Analyst with an interest in both #redteam and #blueteam operations | Hobbyist software developer 👨‍💻 https://t.co/PB8ulCww3K
SecurityJosh
 @SecurityJosh
Sep 21, 2022

As of version 1.0.2, Download Blocker (chrome.google.com/webstore/detai…) can now extract filenames from .zip files that have been HTML smuggled. #blueteam #htmlsmuggling #html5 #DFIR #infosec #soc

SecurityJosh's tweet image. As of version 1.0.2, Download Blocker (chrome.google.com/webstore/detai…) can now extract filenames from .zip files that have been HTML smuggled. #blueteam #htmlsmuggling #html5 #DFIR #infosec #soc
0
0
1
0
0
Richard_S81's profile picture. CIO/CSO/CISO/IT-IS-AI- DATA-Cyber Leader | @clusis_Suisse @CESIN_France | @LegionEtrangere | @Gendarmerie 🗣️🇺🇸 🇫🇷
Richard S.
@Richard_S81
Dec 17, 2022

#Hacking #HTMLsmuggling #QBot #Malware #Vulnerability #Cybercrime #CyberAttack #CyberSecurity Talos researchers uncovered a phishing campaign distributing the QBot malware to Windows systems using SVG files. blog.talosintelligence.com/html-smugglers…

Richard_S81's tweet image. #Hacking #HTMLsmuggling #QBot #Malware #Vulnerability #Cybercrime #CyberAttack #CyberSecurity Talos researchers uncovered a phishing campaign distributing the QBot malware to Windows systems using SVG files. blog.talosintelligence.com/html-smugglers…
0
0
0
0
84
SecProInt's profile picture. Cybersecurity, Pentesting, Ethical Hacking, Awareness, Training, Cyberdefense
SecPro
 @SecProInt
Sep 29, 2024

🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec

SecProInt's tweet image. 🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec
0
0
0
0
40
mdsolutionsperu's profile picture. ¡Bienvenidos a Mobile Data Solutions! 💼💻🌐 Somos una empresa dedicada a ofrecer soluciones de tecnología de la información (IT) que potencian el éxito y la
Mobile Data Solutions
 @mdsolutionsperu
Nov 8

🚨 ¡Alerta de Seguridad! 🚨 Protege tu empresa de amenazas cibernéticas como el HTML Smuggling, que permite a los hackers evadir medidas de seguridad y distribuir contenido malicioso. ¡Contáctanos para fortalecer tu seguridad digital! 🔒 #Ciberseguridad #HTMLSmuggling

mdsolutionsperu's tweet image. 🚨 ¡Alerta de Seguridad! 🚨 Protege tu empresa de amenazas cibernéticas como el HTML Smuggling, que permite a los hackers evadir medidas de seguridad y distribuir contenido malicioso. ¡Contáctanos para fortalecer tu seguridad digital! 🔒 #Ciberseguridad #HTMLSmuggling
0
0
0
0
18
SecurityJosh's profile picture. 💻 Security Analyst with an interest in both #redteam and #blueteam operations | Hobbyist software developer 👨‍💻 https://t.co/PB8ulCww3K
SecurityJosh
 @SecurityJosh
Sep 9, 2022

I've just published a blog post which shows how you can use #ifttt to receive email notifications when DownloadBlocker detects / blocks a download. Check it out ⤵ securityjosh.github.io/2022/09/09/HTM… #blueteam #htmlsmuggling

SecurityJosh's tweet image. I've just published a blog post which shows how you can use #ifttt to receive email notifications when DownloadBlocker detects / blocks a download. Check it out ⤵ securityjosh.github.io/2022/09/09/HTM… #blueteam #htmlsmuggling
0
0
0
0
0
nicolaferrini's profile picture. Microsoft MVP - Trainer - Virtualization Expert - IT Enthusiast
Nicola Ferrini
 @nicolaferrini
Nov 12, 2021

#HTMLsmuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks microsoft.com/security/blog/…

nicolaferrini's tweet image. #HTMLsmuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks microsoft.com/security/blog/…
0
2
3
0
0
SS_consulting_'s profile picture. We specialise in strategic and technical consulting, in the field of Information security, Governance, Risk and Compliance.
SS-Consulting
 @SS_consulting_
Jul 3

Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention

SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
0
0
0
0
8
SS_consulting_'s profile picture. We specialise in strategic and technical consulting, in the field of Information security, Governance, Risk and Compliance.
SS-Consulting
 @SS_consulting_
Jul 3

Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention

SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
SS_consulting_'s tweet image. Sometimes, the threat isn’t in the file - it’s in what the file builds. Stay sharp, stay protected! #SSConsulting #ThreatThursday #HTMLSmuggling #PhishingEvolved #CyberAwareness #MalwarePrevention
0
0
0
0
8
Nullblr's profile picture. The Bangalore chapter of India's largest open security community, NULL @null0x00.
Null Bangalore
 @Nullblr
Jun 21

3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling

Nullblr's tweet image. 3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling
0
0
4
0
376
manuelbissey's profile picture. #Cybersecurity and Risk Management Executive @Microsoft. Passionate about #Cyberdefense, #Technology and #Innovation. Views are my own.
Manuel Bissey
 @manuelbissey
Jun 4

📄 Fake DocuSign sites hosted on GitCode are spreading malware via HTML smuggling. It’s a clever twist on a classic phish—don’t trust every “signature request.” 🧪📬 #PhishingAlert #HTMLSmuggling ift.tt/FCvTlak

manuelbissey's tweet card. Fake Gitcode and DocuSign sites are tricking users into running PowerShell scripts that install NetSupport RAT.
Fake Docusign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack
Source: thehackernews.com
0
0
1
0
26
abhishek102938's profile picture. Founder, CTO@inceptioncyber.ai Top 5 Innovators (Executive, Practitioner) of the Year 2025 @SCMagazine. Nominee Péter Szőr Award @virusbtn AI, CyberSecurity.
Abhishek
 @abhishek102938
Feb 25

Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling

abhishek102938's tweet image. Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling
0
1
1
0
137
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Jan 19

4/8 HTML smuggling is on the rise, delivering XWorm RAT through AutoIt droppers. How safe is your network? 📥 #HTMLSmuggling #RAT #NetworkSecurity

0
0
0
0
22
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Dec 23

In December 2024, multiple cyber attacks targeted Microsoft services, exploiting Azure & OneDrive with phishing and HTML smuggling. Critical sectors face severe data theft risks. 🛡️ #HTMLsmuggling #AzureThreats #USA #ThreatResearch link: ift.tt/lSsMnWb

TweetThreatNews's tweet image. In December 2024, multiple cyber attacks targeted Microsoft services, exploiting Azure & OneDrive with phishing and HTML smuggling. Critical sectors face severe data theft risks. 🛡️ #HTMLsmuggling #AzureThreats #USA #ThreatResearch link: ift.tt/lSsMnWb
0
0
1
0
47
mdsolutionsperu's profile picture. ¡Bienvenidos a Mobile Data Solutions! 💼💻🌐 Somos una empresa dedicada a ofrecer soluciones de tecnología de la información (IT) que potencian el éxito y la
Mobile Data Solutions
 @mdsolutionsperu
Nov 8

🚨 ¡Alerta de Seguridad! 🚨 Protege tu empresa de amenazas cibernéticas como el HTML Smuggling, que permite a los hackers evadir medidas de seguridad y distribuir contenido malicioso. ¡Contáctanos para fortalecer tu seguridad digital! 🔒 #Ciberseguridad #HTMLSmuggling

mdsolutionsperu's tweet image. 🚨 ¡Alerta de Seguridad! 🚨 Protege tu empresa de amenazas cibernéticas como el HTML Smuggling, que permite a los hackers evadir medidas de seguridad y distribuir contenido malicioso. ¡Contáctanos para fortalecer tu seguridad digital! 🔒 #Ciberseguridad #HTMLSmuggling
0
0
0
0
18
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Sep 30, 2024

9/9 Reflecting on this #HTMLSmuggling campaign, it's clear that cybersecurity isn't just IT's problem. It's everyone's. Educate, protect, and stay informed. That's the new mantra for digital safety. 📢#CyberAwareness #DigitalDefender

0
0
0
0
7
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Sep 30, 2024

1/9 🚨 New cyber alert for #RussianSpeaking users! A sneaky #HTMLSmuggling campaign is delivering the #DCRat malware. This isn't just any #malware, it's a full-fledged backdoor! 🚪💻 #CyberSecurity #MalwareAlert

0
0
0
0
40
SecProInt's profile picture. Cybersecurity, Pentesting, Ethical Hacking, Awareness, Training, Cyberdefense
SecPro
 @SecProInt
Sep 29, 2024

🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec

SecProInt's tweet image. 🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec
0
0
0
0
40
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Sep 24, 2024

7/10 📄 #HTMLSmuggling: Malware hidden in plain sight within HTML files. Explore this evasion tactic and how to detect such sophisticated attacks. #CyberSecurity #MalwareAnalysis

0
0
0
0
23
tubblog's profile picture. Author | Advisor | Board-Level & Non-Executive Director (NED) for Technology Companies | #Productivity nerd | Comic Book Geek | Loves a #CheekyNandos
Richard Tubb
 @tubblog
Aug 28, 2024

🛡️ Uncover the latest in HTML smuggling and adversary-in-the-middle tradecraft with @HuntressLabs in "Smuggler's Gambit." Stay ahead of evolving threats! #CyberSecurity #HTMLSmuggling 🔍🚨 Read more: huntress.com/blog/smugglers…

tubblog's tweet image. 🛡️ Uncover the latest in HTML smuggling and adversary-in-the-middle tradecraft with @HuntressLabs in "Smuggler's Gambit." Stay ahead of evolving threats! #CyberSecurity #HTMLSmuggling 🔍🚨 Read more: huntress.com/blog/smugglers…
0
0
1
0
87
advantexuk's profile picture. Technology Solutions for Your Business
Advantex
 @advantexuk
Jul 31, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. hubs.ly/Q02JxXYg0 #CyberSecurity #HTMLSmuggling #TalosIntel

0
0
0
0
27
KECGTech's profile picture. Melbourne based ITC (Information Technology and Communications) company serving Australian Consumers and Businesses. Book your obligation free consult today.
KECG Tech
 @KECGTech
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/umcbK #CyberSecurity #HTMLSmuggling #TalosIntel

0
0
0
0
18
ExtranetSystems's profile picture.
Extranet Systems
 @ExtranetSystems
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/JZkcV #CyberSecurity #HTMLSmuggling #TalosIntel

ExtranetSystems's tweet card. Talos is releasing a new list of CyberChef recipes that enable faster and easier reversal of encoded JavaScript code contained in the observed HTML attachments.
Hidden between the tags: Insights into spammers’ evasion techniques in HTML Smuggling
Source: blog.talosintelligence.com
0
0
0
0
24
ExtranetSystems's profile picture.
Extranet Systems
 @ExtranetSystems
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/0cm3j #CyberSecurity #HTMLSmuggling #TalosIntel

ExtranetSystems's tweet card. Talos is releasing a new list of CyberChef recipes that enable faster and easier reversal of encoded JavaScript code contained in the observed HTML attachments.
Hidden between the tags: Insights into spammers’ evasion techniques in HTML Smuggling
Source: blog.talosintelligence.com
0
0
0
0
22
MaraAnabel45's profile picture. I am the CEO of Clem Tech LLC. ClemTech is an IT VAR and MSP. We discount IBM, Cisco, Microsoft, Dell, APC, Google... Let us be your IT provider.
Mara Anabel
 @MaraAnabel45
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/pQfcn #CyberSecurity #HTMLSmuggling #TalosIntel

MaraAnabel45's tweet card. Talos is releasing a new list of CyberChef recipes that enable faster and easier reversal of encoded JavaScript code contained in the observed HTML attachments.
Hidden between the tags: Insights into spammers’ evasion techniques in HTML Smuggling
Source: blog.talosintelligence.com
0
0
0
0
19
CyberSecManaged's profile picture. Fortify 24x7 assists companies in making informed business decisions and sustaining operational effectiveness in the management of their cybersecurity programs.
Cybersecurity Managed
 @CyberSecManaged
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/9Px4t #CyberSecurity #HTMLSmuggling #TalosIntel

0
0
0
0
17
AccendNetworks's profile picture. An IT Network Consulting Company, specializing in network security, network design, implementation, and support of Data, Wireless and Voice networks.
Accend Networks
 @AccendNetworks
Jul 25, 2024

Learn how HTML smuggling techniques are used in email attacks, embedding JavaScript in HTML attachments to bypass security filters. Attackers use encoding and obfuscation to evade detection. oal.lu/6WHyW #CyberSecurity #HTMLSmuggling #TalosIntel

0
0
0
0
6
No results for "#htmlsmuggling"
Unit42_Intel's profile picture. The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Unit 42
 @Unit42_Intel
Oct 5, 2022

2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1

Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
Unit42_Intel's tweet image. 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOCs available at bit.ly/3fJezJ1
1
87
197
27
0
RecordedFuture's profile picture. Recorded Future. Know what matters. Act first.
Recorded Future
 @RecordedFuture
Sep 19, 2022

The webpage is a Base64-encoded ISO file that is deployed, with automatic download, via the #HTMLsmuggling technique. Of note, the for loop on lines 26 to 28 can run into an error, likely a UAC-0113 operator error, especially given the immutability of string objects in JS. 8/9

RecordedFuture's tweet image. The webpage is a Base64-encoded ISO file that is deployed, with automatic download, via the #HTMLsmuggling technique. Of note, the for loop on lines 26 to 28 can run into an error, likely a UAC-0113 operator error, especially given the immutability of string objects in JS. 8/9
2
2
4
0
0
blueteamsec1's profile picture. The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Blue Team News
@blueteamsec1
Oct 22, 2023

HTMLSmuggler - HTML Smuggling Generator And Obfuscator For Your Red Team Operations dlvr.it/SxpPF1 #HTMLSmuggler #Htmlsmuggling #Opsec #Redteam

blueteamsec1's tweet image. HTMLSmuggler - HTML Smuggling Generator And Obfuscator For Your Red Team Operations dlvr.it/SxpPF1 #HTMLSmuggler #Htmlsmuggling #Opsec #Redteam
0
12
40
10
6K
abhishek102938's profile picture. Founder, CTO@inceptioncyber.ai Top 5 Innovators (Executive, Practitioner) of the Year 2025 @SCMagazine. Nominee Péter Szőr Award @virusbtn AI, CyberSecurity.
Abhishek
 @abhishek102938
Feb 25

Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling

abhishek102938's tweet image. Another case of Malicious HTML Attachment detected by core technology NACE. VT score 4 out of 64. #GenAI, #NACE #HTMLSmuggling
0
1
1
0
137
Nullblr's profile picture. The Bangalore chapter of India's largest open security community, NULL @null0x00.
Null Bangalore
 @Nullblr
Jun 21

3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling

Nullblr's tweet image. 3rd talk of the day on “html smuggling” by Ravishankar and Nikhil @OWASPBangalore @null0x00 #htmlsmuggling
0
0
4
0
376
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 6, 2022

#ln -s :malware_traffic: 2022-10-06 (Thursday): Still seeing thread-hijacked #malspam using #HTMLsmuggling to distribute #Qakbot (#Qbot). Even my most ridiculous emails get thread-hijacked.

0
0
0
0
0
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 5, 2022

#ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…

cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
cpardue09's tweet image. #ln -s :malware_traffic: RT @Unit42_Intel: 2022-10-04 (Tuesday) - #HTMLsmuggling used to distribute #IcedID (#Bokbot) which led to #CobaltStrike - Unusual traffic over TCP port 8080 included plain text instructions to retrieve and run Cobalt Strike - IOC…
0
0
0
0
0
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Oct 7, 2022

#ln -s :malware_traffic: 2022-10-06 (Thursday): #HTMLsmuggling led to #IcedID using didociskal[.]com & dietappli[.]shop, which led to #CobaltStrike stager at hxxp://199.127.60[.]47/download/4.dll, then CobaltStrike C2 on 64.44.101[.]15:443 using yebicida…

0
0
0
0
0
cpardue09's profile picture. Look mom, I automated my twitter again!
Chris Pardue
 @cpardue09
Dec 14, 2022

#ln -s :malware_traffic: @Unit42_Intel 2022-12-13 (Tuesday) - More #HTMLsmuggling leading to #CobaltStrike. Same IP address for Cobalt Strike C2 and same persistence mechanism, but this time it's HTML file --> .js --> HTTP traffic for .ps1 --> Cobalt St…

0
0
0
0
0
iAngelus's profile picture. Scio me nihil scire. #ThreatIntel/#CTI now; was #IncidentResponse/#IR. Humanities (AB Φ, Comm) grad, ex-seminarian (λόγος). Impostor Syndrome ∞. Opinions∴mine.
ac@t:~#
 @iAngelus
Oct 30, 2022

sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript

iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
iAngelus's tweet image. sender: sourcinginvestments[.]co[.]uk attachment: next.medeks[.]az / 192.185.174[.]178 phish: login-microsoftonline-office365microsoft-authentication.lanware[.]net[.]mx #malspam #phishing #htmlsmuggling #javascript
0
5
6
0
0
SecProInt's profile picture. Cybersecurity, Pentesting, Ethical Hacking, Awareness, Training, Cyberdefense
SecPro
 @SecProInt
Sep 29, 2024

🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec

SecProInt's tweet image. 🌐New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users🌐 thehackernews.com/2024/09/new-ht… #HTMLSmuggling #Malware #DCRat #CyberThreat #CyberSecurity #MaliciousSoftware #InfoSec
0
0
0
0
40
AcooEdi's profile picture. high level of job #Security #websitesecurity #dataprotection #privacy #hacker #malware #Pentesting #Infosec #Tech #Technology
EdiAcoo
 @AcooEdi
Dec 13, 2022

HTML smugglers turn to SVG images dlvr.it/SfKHMH #Qakbot #HTMLSmuggling via TalosSecurity

AcooEdi's tweet image. HTML smugglers turn to SVG images dlvr.it/SfKHMH #Qakbot #HTMLSmuggling via TalosSecurity
0
1
0
0
0
Richard_S81's profile picture. CIO/CSO/CISO/IT-IS-AI- DATA-Cyber Leader | @clusis_Suisse @CESIN_France | @LegionEtrangere | @Gendarmerie 🗣️🇺🇸 🇫🇷
Richard S.
@Richard_S81
Dec 17, 2022

#Hacking #HTMLsmuggling #QBot #Malware #Vulnerability #Cybercrime #CyberAttack #CyberSecurity Talos researchers uncovered a phishing campaign distributing the QBot malware to Windows systems using SVG files. blog.talosintelligence.com/html-smugglers…

Richard_S81's tweet image. #Hacking #HTMLsmuggling #QBot #Malware #Vulnerability #Cybercrime #CyberAttack #CyberSecurity Talos researchers uncovered a phishing campaign distributing the QBot malware to Windows systems using SVG files. blog.talosintelligence.com/html-smugglers…
0
0
0
0
84
RedCiberSeg's profile picture. Somos la primera Red de Investigación Académica en Ciberseguridad y Cibercrimen en #Colombia. Co-creadores tanques de pensamiento en #Cibercriminología.
RedCiber
 @RedCiberSeg
Nov 12, 2021

Una vez el análisis coincide con la peligrosidad o criticidad del #malware utilizado, es evidente la utilización de tecnicas como el #HTMLsmuggling, técnica utilizada en #mekotio #Trickbot, entre otros #RAT basado en HTML5 and #JavaScript.👉bit.ly/3otTLWG #CTI #DFIR

RedCiberSeg's tweet image. Una vez el análisis coincide con la peligrosidad o criticidad del #malware utilizado, es evidente la utilización de tecnicas como el #HTMLsmuggling, técnica utilizada en #mekotio #Trickbot, entre otros #RAT basado en HTML5 and #JavaScript.👉bit.ly/3otTLWG #CTI #DFIR
0
1
4
0
0
JaytheletterJ's profile picture. Field CTO, #MSEE, #JD, @tbtaonline COB, VC Advisor, FFREF COB, @usouthflorida/@UofSC_CEC/@stetsonlaw alum, etc
J Stephen Kowski
@JaytheletterJ
Oct 9, 2023

Discover how HTML Smuggling Phishing Attacks have evolved in 2023 with a new layer of obfuscation, making them harder to detect. Stay updated on this emerging cyber threat. #business #technology #HTMLSmuggling #PhishingAttack #CyberSecurity #EmailSecurity #InfoSec #CyberThreat

JaytheletterJ's tweet image. Discover how HTML Smuggling Phishing Attacks have evolved in 2023 with a new layer of obfuscation, making them harder to detect. Stay updated on this emerging cyber threat. #business #technology #HTMLSmuggling #PhishingAttack #CyberSecurity #EmailSecurity #InfoSec #CyberThreat…
0
0
0
0
58
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Dec 23

In December 2024, multiple cyber attacks targeted Microsoft services, exploiting Azure & OneDrive with phishing and HTML smuggling. Critical sectors face severe data theft risks. 🛡️ #HTMLsmuggling #AzureThreats #USA #ThreatResearch link: ift.tt/lSsMnWb

TweetThreatNews's tweet image. In December 2024, multiple cyber attacks targeted Microsoft services, exploiting Azure & OneDrive with phishing and HTML smuggling. Critical sectors face severe data theft risks. 🛡️ #HTMLsmuggling #AzureThreats #USA #ThreatResearch link: ift.tt/lSsMnWb
0
0
1
0
47
nicolaferrini's profile picture. Microsoft MVP - Trainer - Virtualization Expert - IT Enthusiast
Nicola Ferrini
 @nicolaferrini
Nov 12, 2021

#HTMLsmuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks microsoft.com/security/blog/…

nicolaferrini's tweet image. #HTMLsmuggling surges: Highly evasive loader technique increasingly used in banking malware, targeted attacks microsoft.com/security/blog/…
0
2
3
0
0
SecurityJosh's profile picture. 💻 Security Analyst with an interest in both #redteam and #blueteam operations | Hobbyist software developer 👨‍💻 https://t.co/PB8ulCww3K
SecurityJosh
 @SecurityJosh
Sep 21, 2022

As of version 1.0.2, Download Blocker (chrome.google.com/webstore/detai…) can now extract filenames from .zip files that have been HTML smuggled. #blueteam #htmlsmuggling #html5 #DFIR #infosec #soc

SecurityJosh's tweet image. As of version 1.0.2, Download Blocker (chrome.google.com/webstore/detai…) can now extract filenames from .zip files that have been HTML smuggled. #blueteam #htmlsmuggling #html5 #DFIR #infosec #soc
0
0
1
0
0

Something went wrong.


Something went wrong.


United States Trends