Spyke

Obsidian Plugin Abused in Social Engineering Campaign to Deliver New PHANTOMPULSE RAT - CyberNetSec.io

https://cyber.netsecops.io/articles/obsidian-plugin-abused-in-campaign-to-deploy-phantom-pulse-rat/Open link View original on feddit.org

Comments5

Leon

pawb.social

Nice of them to mention which plugin.

dave reply

feddit.uk

Did you try reading it?

It enables malicious versions of legitimate Obsidian plugins ('Shell Commands' and 'Hider') that are present in the shared vault.

Note these are deliberately altered versions, not the originals.

Leon reply

pawb.social

I did, but I failed reading comprehension. Shouldn’t be reading this stuff right after waking up.

dave reply

feddit.uk

And didn’t mean to be snarky—but it’s probably a good thing they didn’t just name the plugins in the headline as avoiding them by name isn’t the solution here…

Bonje

lemmy.world

That is such a cool name. I'm going to name my rat Phantompulse.