Method of infection: Water-holing
OSIRIS used a Social Engineering method called “water holing” to attack German IP addresses.
How does water holing attack work?
- The victim enters the infected website.
- The website checks if the target IP is German.
- If it’s a German IP – few evasion techniques are used to bypass EDR
- And then the virus connects to its command server through the Darknet
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW,
And see where your Company is Exposed to Hackers
Recently Posted on AUMINT.io Blog
The Payment Trap No One’s Watching – Supply Chain’s Hidden Cyber Exposure
🧾 Payment Systems Are Your Cyber Blind Spot
🚨 Your vendors may be your biggest threat – and you’d never know.
🔍 Cybercriminals are hijacking invoice emails and vendor accounts to reroute payments without triggering a single alarm.
🧠 They don’t need malware – they need your trust.
📦 Most supply chain payment processes are built for speed, not scrutiny. That’s the exact vulnerability attackers exploit.
📤 A supplier “updates” their bank details.
📩 A finance contact “confirms” the update.
💸 The money? Gone.
⚠️ These attacks look like normal business interactions – not breaches.
And that’s why they work.
💬 If you’re not simulating these threats, you’re silently exposed.
Finance teams, CISOs, Procurement Leaders – this is your wake-up call.
🔒 AUMINT helps you uncover hidden risks in your approval flows, supplier communication, and payment process before attackers do.
📅 Want to test your system with zero risk? Book your free simulation review.
#CyberSecurity #FinanceLeaders #CISOs #VendorRisk #SocialEngineering #FraudPrevention #SupplyChainSecurity #AUMINT