This intelligence report focuses on a phishing campaign that utilizes Browser-in-the-Middle (BitM) pages. The campaign likely involves sophisticated tactics to intercept and manipulate browser traffic, potentially allowing attackers to harvest credentials or inject malicious content. While specific details are not provided, the use of BitM techniques suggests a high level of technical sophistication and a targeted approach to compromising user data. The report appears to include Indicators of Compromise (IOCs) related to this campaign, which could be crucial for detecting and mitigating the threat. Author: AlienVault
Related Tags:
browser-in-the-middle
T1539
T1185
T1187
T1189
T1056
AlienVault OTX
AlienVault
Phishing
Associated Indicators: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