Skip to content
The Nexus
DossierENTITY

Elastic Security Labs

Coverage of Elastic Security Labs in the Nexus archive.

Earliest in view: Apr 16 · 10:20 UTCMost recent: May 8 · 18:12 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYMay 8 · 18:12 UTCTHE HACKER NEWS
    TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

    A previously undocumented Brazilian banking trojan called TCLBANKER has been flagged, targeting 59 financial platforms via WhatsApp and Outlook worms. The malware is an update of the Maverick family and is being tracked by Elastic Security Labs under REF3076. It spreads using a worm called SORVEPOTEL.

  • SECURITYApr 16 · 10:20 UTCTHE HACKER NEWS
    Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

    A novel social engineering campaign is exploiting Obsidian, a note-taking app, to deliver PHANTOMPULSE RAT, a previously undocumented Windows remote access trojan targeting financial and cryptocurrency sector individuals. Elastic Security Labs has labeled the activity as REF6598, highlighting its use of Obsidian plugins as an initial access vector.

Elastic Security Labs · Dossier · The Nexus