Obsidian Plugin Abused in Social Engineering Campaign to Deliver New PHANTOMPULSE RAT - CyberNetSec.io

submitted by

https://cyber.netsecops.io/articles/obsidian-plugin-abused-in-campaign-to-deploy-phantom-pulse-rat/

5
59
1

Log in to comment

Hot Top New Old

Nice of them to mention which plugin.

 reply
15

Did you try reading it?

It enables malicious versions of legitimate Obsidian plugins (’Shell Commands’ and ‘Hider’) that are present in the shared vault.

Note these are deliberately altered versions, not the originals.

 reply
14

I did, but I failed reading comprehension. Shouldn’t be reading this stuff right after waking up.

 reply
13

And didn’t mean to be snarky—but it’s probably a good thing they didn’t just name the plugins in the headline as avoiding them by name isn’t the solution here…

 reply
9

That is such a cool name. I’m going to name my rat Phantompulse.

 reply
4
Insert image