Another example for IT guys. Internal repositories for software installers offer increased security, control, efficiency, and cost optimization for organizations. They create a safer and more reliable software environment for employees, while also aiding in compliance efforts.
By Malwarebytes lab
Threat actors are known for impersonating popular brands in order to trick users. In a recent malvertising campaign, we observed a malicious Google ad for KeePass, the open-source password manager which was extremely deceiving. We previously reported on how brand impersonations are a common occurrence these days due to a feature known as tracking templates, but this attack used an additional layer of deception.
The malicious actors registered a copycat internationalized domain name that uses Punycode, a special character encoding, to masquerade as the real KeePass site. The difference between the two sites is visually so subtle it will undoubtedly fool many people.
We have reported this incident to Google but would like to warn users that the ad is still currently running.
A detailed article by Malwarebytes here: https://www.malwarebytes.com/blog/threat-intelligence/2023/10/clever-malvertising-attack-uses-punycode-to-look-like-legitimate-website
No comments:
Post a Comment