We have identified a novel social engineering campaign abusing Obsidian, the popular note taking...

Summary

Security researchers identified a new social engineering campaign that abuses Obsidian, a popular note-taking application, to distribute PHANTOMPULSE, a previously undocumented remote access trojan (RAT), along with its loader PHANTOMPULL. The attack targets individuals in finance and cryptocurrency sectors and relies on social engineering rather than exploiting application vulnerabilities.

Indicators of Compromise

• malware — PHANTOMPULSE
• malware — PHANTOMPULL

Entities