all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Dissecting AlienFox | The Cloud Spammer’s Swiss Army Knife

Add to bookmarks
March 30, 2023, 10:01 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Executive Summary



  • SentinelLabs analyzed several iterations of “AlienFox,” a comprehensive toolset for harvesting credentials for multiple cloud service providers.

  • Attackers use AlienFox to harvest API keys & secrets from popular services including AWS SES & Microsoft Office 365.

  • AlienFox is a modular toolset primarily distributed on Telegram in the form of source code archives. Some modules are available on GitHub for any would-be attacker to adopt.

  • The spread of AlienFox represents an unreported trend towards attacking more minimal cloud services, …

alienfox amp api api keys army attackers aws campaigns cloud cloud service cloud service providers cloud services code credentials cryptomining distributed enable executive github keys knife malware analysis microsoft microsoft office microsoft office 365 modular modules office office 365 order popular secrets sentinellabs service service providers services ses source code spammer swiss army knife telegram trend

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Rise of Malicious AI Tools: A Case Study with HackerGPT 15 minutes ago | malware.news
ai models ai tools artificial artificial intelligence +18
How To Migrate Off Legacy Technology And Modernize Your Solutions With Lumen 4 hours ago | malware.news
applications business business growth can +17
ISC Stormcast For Friday, April 19th, 2024 https://isc.sans.edu/podcastdetail/8946, (Fri, Apr 19th) 7 hours ago | malware.news
topic
From Hackers to Streakers - How Counterintelligence Teams are Protecting the NFL - Joe McMann … 10 hours ago | malware.news
article counterintelligence hackers link +5
Microsoft finds Kubernetes clusters targeted by OpenMetadata exploits 11 hours ago | malware.news
article campaign clusters cryptominer +11
Threat Intelligence Snapshot: Week 16, 2024 12 hours ago | malware.news
access amp april find +12
Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 13 hours ago | malware.news
affiliates as-a-service blackcat cl0p +16
Brave search engine adds privacy-focused AI - no Google or Bing needed 14 hours ago | malware.news
article bing brave brave search +12
Sidekick 1.0 Release 14 hours ago | malware.news
access ai-powered binary binary ninja +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Systems Security Officer (ISSO), Junior

@ Dark Wolf Solutions | Remote / Dark Wolf Locations
View on infosec-jobs.com

Cloud Security Engineer

@ ManTech | REMT - Remote Worker Location
View on infosec-jobs.com

SAP Security & GRC Consultant

@ NTT DATA | HYDERABAD, TG, IN
View on infosec-jobs.com

Security Engineer 2 - Adversary Simulation Operations

@ Datadog | New York City, USA
View on infosec-jobs.com
View more jobs