Method of infection: Water-holing
OSIRIS used a Social Engineering method called “water holing” to attack German IP addresses.
How does water holing attack work?
- The victim enters the infected website.
- The website checks if the target IP is German.
- If it’s a German IP – few evasion techniques are used to bypass EDR
- And then the virus connects to its command server through the Darknet
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW,
And see where your Company is Exposed to Hackers
Recently Posted on AUMINT.io Blog
Hackers Are Now Hiding JavaScript in SVGs – Here’s Why That’s a Big Deal
🖼️ Attackers Are Now Hiding Code in Images
⚠️ SVG files – once harmless – are now the perfect weapon for hackers.
💣 They’re using them to smuggle JavaScript directly into your browser.
🧠 The code is obfuscated, undetected by filters, and triggered automatically when the SVG loads.
🔒 Antivirus? Email filters? Many won’t even blink – it looks like an image.
🔥 But it’s a trap – and your users won’t know until it’s too late.
🔁 Redirects, credential theft, and deeper payloads are now just a click away – disguised as a logo, button, or banner.
📉 The biggest danger? Most security teams aren’t testing for this.
That’s why AUMINT Trident now includes real-world SVG lures in our simulated phishing and awareness platform – so your team doesn’t learn the hard way.
🎯 We’re not just teaching theory – we’re replicating the exact tactics attackers use.
Want to see it live?
👉 Book Your Private AUMINT Demo
#CyberSecurity #CISOs #CTOs #EmailSecurity #SOC #CyberAwareness #SVGExploits #SocialEngineering #SecurityAwareness #CyberThreats2025 #InfoSec