Pranay Patil, Author at DNS Security & Threat Intelligence Blog | Shreshta

Web shell – A primer

Vivek Halappanavar, Swapneel Patnekar and Pranay Patil — Thu, 22 Feb 2024 06:51:44 +0000

What is a web shell? A web shell is a malicious script written using commonly used web application languages such as PHP, JSP, or ASP. They provide an attacker with a easy way to attack a compromised web server via web-based vulnerabilities, and once installed on a web server’s operating system, the web shell’s facilitate […]

The post Web shell – A primer appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

The rise of phishing attacks targeting Adobe users in India

Swapneel Patnekar and Pranay Patil — Tue, 26 Dec 2023 07:38:49 +0000

Executive Summary Shreshta Threat Intelligence has uncovered a rise in phishing attacks targeting Adobe users in India. The attack begins by sending emails to employees working at Micro Small and Medium Enterprises(MSME), large enterprises, and luring them to click on a link which impersonates a Purchase Order or a Work Order document. The attack uses […]

The post The rise of phishing attacks targeting Adobe users in India appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

HDFC Bank customers targeted by a sophisticated Phishing Scam

Swapneel Patnekar and Pranay Patil — Wed, 06 Dec 2023 13:26:05 +0000

Shreshta Threat Intelligence has uncovered a sophisticated phishing scam targeting HDFC Bank customers. The phishing websites crafted by the threat actors is visually perfect unlike the Phishing Campaign targeting State Bank of India users The phishing websites replicate the structure of the legitimate HDFC Bank website. This makes it extremely difficult to identify the scam […]

The post HDFC Bank customers targeted by a sophisticated Phishing Scam appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Phishing Campaign targeting State Bank of India users

Swapneel Patnekar and Pranay Patil — Fri, 01 Dec 2023 07:37:22 +0000

Phishing campaign targeting State Bank of India users

The post Phishing Campaign targeting State Bank of India users appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Threat actors targeting Indian citizens

Pranay Patil — Tue, 21 Mar 2023 14:02:33 +0000

Security researchers at Shreshta have identified a phishing campaign targeting Indian citizens. We have identified a phishing campaign targeting Income Tax users of India wherein the phishing email tempts the user to download a PDF zip file. The zip file contains an exe file, Kutaki keylogger. Phishing email targeting Indian citizens – Income tax […]

The post Threat actors targeting Indian citizens appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Threat actors targeting Union Bank of Philippines users

Pranay Patil — Mon, 20 Mar 2023 10:17:18 +0000

Security researchers at Shreshta have identified a phishing campaign targeting Indian citizens. Threat actors targeting Union Bank of Philippines users with a phishing campaign Executive Summary The Union Bank of the Philippines, Inc., more commonly known as UnionBank, is one of the universal banks in the Philippines and the ninth-largest bank in the country by assets.1 […]

The post Threat actors targeting Union Bank of Philippines users appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Phishing targeting MetaMask users

Pranay Patil — Tue, 14 Feb 2023 07:15:46 +0000

Security researchers at Shreshta , using our threat intelligence platform SDINET, have identified a phishing website targeting MetaMask users. A phishing campaign targeting MetaMask users has been doing the rounds on the internet. About MetaMask MetaMask is a software cryptocurrency wallet used to interact with the Ethereum blockchain. It allows users to access their Ethereum wallet […]

The post Phishing targeting MetaMask users appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Phishing campaign targeting Indiana Department of Workforce Development’s (DWD) Uplink

Pranay Patil — Wed, 08 Feb 2023 07:54:38 +0000

On the 21st of January, security researchers at Shreshta, had uncovered a phishing website impersonating the Indiana Department of Workforce Uplink website. During further investigations, we discovered a more extensive phishing campaign. Get free access to Newly registered domain names (NRD) community feeds Newly registered domain names or recently registered domains can be a potential […]

The post Phishing campaign targeting Indiana Department of Workforce Development’s (DWD) Uplink appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Phishing targeting Netherlands Chamber of Commerce users(KVK)

Pranay Patil — Sat, 28 Jan 2023 11:16:08 +0000

Security researchers at Shreshta IT, using our threat intelligence platform SDINET, have identified phishing targeting Netherlands Chamber of Commerce Users (KVK). About Netherlands Chamber of Commerce (KVK) The Netherlands Chamber of Commerce (Kamer van Koophandel – KVK) is a public service provider. Its main tasks are: managing the Dutch Business Register, providing information, advice and […]

The post Phishing targeting Netherlands Chamber of Commerce users(KVK) appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Phishing targeting Microsoft Outlook users

Pranay Patil — Fri, 27 Jan 2023 17:33:01 +0000

Security researchers at Shreshta IT, using our threat intelligence platform SDINET, have identified a phishing website targeting users of Microsoft Outlook. About Microsoft Outlook Outlook.com is a webmail service that is part of the Microsoft 365 product family. It offers mail, calendaring, contacts, and tasks services.1 Phishing page impersonating Outlook login – www[.]newoutlook[.]email Phishing page […]

The post Phishing targeting Microsoft Outlook users appeared first on DNS Security & Threat Intelligence Blog | Shreshta.