Buy Crypto- Markets
Futures- Spot
- Copy Trade
- Earn
- More
Security agency: Hackers are using Obsidian to spread the PHANTOMPULSE Trojan
The security research organization Elastic Security Labs has disclosed a new social engineering attack targeting personnel in the finance and cryptocurrency industries. The attackers impersonate venture capital firms on LinkedIn and Telegram, tricking targets into opening an Obsidian note repository that contains a built-in malicious payload, thereby deploying a previously unrecorded Windows remote access Trojan called PHANTOMPULSE.
This attack does not exploit any software vulnerabilities but instead abuses the Shell Commands plugin of Obsidian to automatically execute malicious code when the note repository is opened. On the macOS side, it uses an obfuscated AppleScript launcher in conjunction with a Telegram channel as a backup command and control server, while on the Windows side, it leverages Ethereum transaction data to achieve blockchain-based C2 address resolution.
You may also like
CROO officially releases the CROO Agent Protocol (CAP), building a decentralized business infrastructure for AI agents
Who is swimming naked, and who is breaking the waves? Analysis Report on the Comprehensive Ranking of Hong Kong Licensed Virtual Asset Trading Platforms (VATP)
Deconstructing RAVE Dealer Control Techniques
70x in a Month: When $RAVE Put Istanbul’s Dancefloor on the Chain
A Web3 project with zero VCs and no whitepaper started with a midnight party for 200 people. Eighteen months later, its token $RAVE is up 70x, and its contract liquidations briefly eclipsed Ethereum’s. Is this just pure speculation, or are we looking at a new breed of cultural asset?
Bearish Traders Continue to Short Bitcoin | Rewire News Morning Update
Is Nasdaq About to Reach a New High, Is the Bull Market Back?
Goldman Sachs Applies for Bitcoin ETF, Wall Street's Final Bastion Falls
Only Working 2 Hours a Day? This Google Engineer Got His Job Done Using Claude for 80% of It
Interpreting Stanford's 423-page AI Report: US-China Gap Narrows to 2.7%, Tsinghua's DeepSeek Enters Global Top Ten
YouTube will become the next new type of bank
How to Reshape On-Chain Transaction Logic? Exploring the Rise of Stablecoin Execution Layers
Why AI Memecoins are Failing the Reality Test
From 90,000% gains to a 98% crash—discover why the AI Meme bubble is bursting and what the shift to "AI Utility" means for your portfolio.
Morning News | Kraken receives $200 million investment from Deutsche Börse; Goldman Sachs submits application for Bitcoin Premium Income ETF; Walsh discloses his cryptocurrency holdings
Hong Kong licensing, stablecoin landscape changes: Who is reshaping the next generation of the financial landscape?
IOSG: TAO is like the Elon Musk who invested in OpenAI, Subnet is like Sam Altman
Stablecoin License Battle Concludes: Anxiety-Ridden Hong Kong, Will Not Wait for the Next Tether
You can grasp a new field in half an hour, how to quickly establish a cognitive framework using AI?
Franklin Templeton's latest research: How to understand RWA tokenization
CROO officially releases the CROO Agent Protocol (CAP), building a decentralized business infrastructure for AI agents
Who is swimming naked, and who is breaking the waves? Analysis Report on the Comprehensive Ranking of Hong Kong Licensed Virtual Asset Trading Platforms (VATP)
Deconstructing RAVE Dealer Control Techniques
70x in a Month: When $RAVE Put Istanbul’s Dancefloor on the Chain
A Web3 project with zero VCs and no whitepaper started with a midnight party for 200 people. Eighteen months later, its token $RAVE is up 70x, and its contract liquidations briefly eclipsed Ethereum’s. Is this just pure speculation, or are we looking at a new breed of cultural asset?
App