all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Dissecting AlienFox | The Cloud Spammer’s Swiss Army Knife

Add to bookmarks
March 30, 2023, 10:01 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Executive Summary



  • SentinelLabs analyzed several iterations of “AlienFox,” a comprehensive toolset for harvesting credentials for multiple cloud service providers.

  • Attackers use AlienFox to harvest API keys & secrets from popular services including AWS SES & Microsoft Office 365.

  • AlienFox is a modular toolset primarily distributed on Telegram in the form of source code archives. Some modules are available on GitHub for any would-be attacker to adopt.

  • The spread of AlienFox represents an unreported trend towards attacking more minimal cloud services, …

alienfox amp api api keys army attackers aws campaigns cloud cloud service cloud service providers cloud services code credentials cryptomining distributed enable executive github keys knife malware analysis microsoft microsoft office microsoft office 365 modular modules office office 365 order popular secrets sentinellabs service service providers services ses source code spammer swiss army knife telegram trend

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

The real reason antivirus software detects cracks 18 hours ago | malware.news
malware analysis topic
Update: what-is-new.py Version 0.0.4 22 hours ago | malware.news
article didier didier stevens http +9
The CTI Analyst Challenge 1 day ago | malware.news
analysis analyst analysts capabilities +14
Critical RCE Vulnerability (CVE-2024-4577) in PHP on Windows: Patch Now Available 1 day, 11 hours ago | malware.news
code code execution continuous critical +15
2024-06-08: Three days of server scans and probes 1 day, 17 hours ago | malware.news
analysis article link malware +7
Update: simple_listener.py Version 0.1.5 1 day, 22 hours ago | malware.news
design ipv4 ipv6 malware analysis +5
PHP updates urged over critical vulnerability that could lead to RCE 2 days, 1 hour ago | malware.news
administrators article critical critical vulnerability +10
Microsoft rethinks Recall feature for Copilot after backlash over security 2 days, 1 hour ago | malware.news
article copilot default feature +8
Senator: HHS Needs to Require Security Measures for Health Sector 2 days, 2 hours ago | malware.news
attack care cybersecurity cybersecurity measures +26

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com