Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
cyberplace.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Cybersecurity, fandom, video games, technology, dog photos and most importantly, you.

Administered by:

Server stats:

956
active users

cyberplace.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Public *
Fellows

If you’re not blocking SVG (Scalable Vector Graphic) attachments in email messages you might want to.

I have observed something I haven’t yet seen. Malicious email messages where the attachment the threat actor wants the target to open is a SVG file pretending to be an agreement.

The SVG file when loaded makes a HTTP call to load a remote image, it also contains a transparent layer which links to the malicious website.

Looks to be an attempt at evading detection.

#ThreatIntel
Public
John Hobbs

@fellows Any idea how to accomplish that with the Thunderbird email client?

Fellows

@johnhobbs It’s always best to block stuff before it hits the mail client. You could check with your provider to see if they have filtering abilities.

I’m not familiar with Thunderbird, but you might be able to create rules that would run when email is downloaded.

Jan 21, 2025, 09:25 PM·Public·Ivory for iOS
0boosts·0favorites
ExploreLive feeds
About