Obsidian Plugin Abused in Social Engineering Campaign to Deliver New PHANTOMPULSE RAT
cyber.netsecops.io
A sophisticated campaign is abusing the Obsidian note-taking app to deliver a new RAT, PHANTOMPULSE, to targets in the finance and crypto sectors using social engineering and malicious plugins.
    • dave@feddit.ukEnglish
      14·
      6 days ago

      Did you try reading it?

      It enables malicious versions of legitimate Obsidian plugins (‘Shell Commands’ and ‘Hider’) that are present in the shared vault.

      Note these are deliberately altered versions, not the originals.

      • Leon@pawb.socialEnglish
        141·
        6 days ago

        I did, but I failed reading comprehension. Shouldn’t be reading this stuff right after waking up.

        • dave@feddit.ukEnglish
          9·
          6 days ago

          And didn’t mean to be snarky—but it’s probably a good thing they didn’t just name the plugins in the headline as avoiding them by name isn’t the solution here…