Method of infection: Water-holing
OSIRIS used a Social Engineering method called “water holing” to attack German IP addresses.
How does water holing attack work?
- The victim enters the infected website.
- The website checks if the target IP is German.
- If it’s a German IP – few evasion techniques are used to bypass EDR
- And then the virus connects to its command server through the Darknet
Save Your Company from Social Engineering Attacks Like that
Register and Get your Personalized Free Exposure Report NOW,
And see where your Company is Exposed to Hackers
Recently Posted on AUMINT.io Blog
When Everyday Tools Become Cyberattack Vectors: How Threat Actors Exploit ChatGPT, Cisco AnyConnect, Google Meet, and Teams
⚠️ Cybercriminals Exploit ChatGPT, Cisco AnyConnect, Google Meet, Teams
🚨 Trusted collaboration tools are now targets for highly sophisticated social engineering attacks.
🔍 Threat actors craft personalized phishing, exploit VPN flaws, and send fake meeting invites to steal credentials and spread malware.
🧠 These attacks blend technology and psychology, making detection by automated defenses tough.
💡 Human vigilance is crucial – technology alone won’t stop these evolving threats.
🔥 AUMINT Trident delivers tailored social engineering simulations to turn employees into your strongest defense.
Strengthen your human firewall with AUMINT
#CyberSecurity #SocialEngineering #AUMINT #Phishing #CISO #SecurityAwareness #TechSecurity