New Spear-Phishing Attack Abusing Google Ads to Deliver EndRAT Malware

[Brownie2019]

Content source

https://cybersecuritynews.com/new-spear-phishing-attack-abusing-google-ads/

A new spear-phishing campaign known as Operation Poseidon has emerged, exploiting Google’s advertising infrastructure to distribute EndRAT malware while evading traditional security measures.

he attack leverages legitimate ad click tracking domains to disguise malicious URLs, making them appear as trustworthy advertising traffic. This technique effectively bypasses email security filters and reduces user suspicion during the initial infection stage.

More on:

New Spear-Phishing Attack Abusing Google Ads to Deliver EndRAT Malware

Operation Poseidon uses Google ad tracking links to spread EndRAT malware, bypass filters, in spear-phishing tied to Konni APT.

cybersecuritynews.com

 

[Parkinsond]

Ad blockers do much more than just making webpage visually appealing.