Threats Tagged 'multi-country campaign'
View all threats tagged with 'multi-country campaign'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'multi-country campaign'
Click on any threat for detailed analysis and mitigation recommendations
Exposing a Global Smishing Operation Across 19 Countries: Governments, Postal Services, and Telecoms Targeted 0 A coordinated smishing operation spanning 19 countries across Europe, the Americas, and the Caucasus has been exposed, originating from fraudulent SMS messages impersonating Romania's government payment portal Ghișeul.ro. Investigation revealed 1,628 malicious URLs linked by a single 128-character campaign identifier, targeting government portals, traffic police departments, postal services including DPD and SEUR, tax authorities, and telecommunications providers like T-Mobile and Vodafone. The infrastructure utilizes 32 backend IP addresses distributed across Tencent Cloud, Alibaba Cloud, Cloudflare CDN, and ALEXHOST Moldova. Threat actors employ two distinct phishing templates: a Vue.js single-page application and a Bootstrap-based clone, executing a four-stage credential harvesting process that collects complete payment card details through fabricated traffic fines, toll payments, and delivery notifications. MediumCampaign Join the discussion United States Albania Armenia+16#smishing#government impersonation#credential harvesting | AlienVault OTX General | 05/27/2026, 20:22:10 UTC Added: 05/28/2026, 15:33:32 UTC |
Showing 1 to 1 of 1 result