Unknown threat actors
Incidents involved as Deployer
Incidente 10687 Reportes
AI-Powered Presentation Tool Gamma Implicated in Multi-Stage Phishing Campaign
2025-04-15
Attackers reportedly exploited Gamma, an AI-powered presentation tool, to create convincing presentation pages that hosted links to a spoofed Microsoft SharePoint login portal. The phishing flow allegedly used compromised email accounts, Cloudflare Turnstile for bot evasion, and adversary-in-the-middle (AiTM) tactics to validate credentials in real time and capture session cookies. The campaign aimed to bypass MFA and compromise accounts.
MásIncidente 13681 Reporte
Malicious OpenClaw Skills Reportedly Delivered AMOS Stealer and Exfiltrated Credentials via ClawHub
2026-02-01
Bitdefender researchers reported abuse in OpenClaw’s third-party “skills” ecosystem. In a Feb. 2026 sample, about 17% of skills were reportedly assessed as malicious, with many seemingly cloned under slight name changes. Posing as utilities, some skills were reportedly found to run obfuscated commands, fetch remote payloads, and in some cases deliver AMOS Stealer on macOS. Other skills were reportedly observed searching for private keys or API tokens and exfiltrating them.
MásEntidades relacionadas
Otras entidades que están relacionadas con el mismo incidente. Por ejemplo, si el desarrollador de un incidente es esta entidad pero el implementador es otra entidad, se marcan como entidades relacionadas.
Entidades relacionadas
Gamma
Afectado por Incidentes
- Incidente 10687 Report
AI-Powered Presentation Tool Gamma Implicated in Multi-Stage Phishing Campaign
Incidents involved as Developer
- Incidente 10687 Report
AI-Powered Presentation Tool Gamma Implicated in Multi-Stage Phishing Campaign