- May 4, 2019
- 801
A clever spam campaign is underway that pretends to be a WebEx meeting invite and uses a Cisco open redirect that pushes a Remote Access Trojan to the recipient. Using open redirects add legitimacy to spam URLs and increases the chances that victims will click on an URL.
An open redirect is when a legitimate site allows unauthorized users to create URLs on that site to redirect visitors to other sites that they wish. This allows an attacker to utilize the URL of a well-known and respected company to deliver malware or phishing campaigns.
For example, Google has an open redirect at the URL Redirect Notice that can be used by anyone, including attackers, to redirect a visitor through Google's site to another site.
Clever WebEx Spam Use Cisco Redirect to Deliver RAT Malware
Last edited by a moderator: