A sophisticated campaign is abusing the Obsidian note-taking app to deliver a new RAT, PHANTOMPULSE, to targets in the finance and crypto sectors using social engineering and malicious plugins.
And didn’t mean to be snarky—but it’s probably a good thing they didn’t just name the plugins in the headline as avoiding them by name isn’t the solution here…
I did, but I failed reading comprehension. Shouldn’t be reading this stuff right after waking up.
And didn’t mean to be snarky—but it’s probably a good thing they didn’t just name the plugins in the headline as avoiding them by name isn’t the solution here…