Threats Tagged 'uri handler exploitation'
View all threats tagged with 'uri handler exploitation'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'uri handler exploitation'
Click on any threat for detailed analysis and mitigation recommendations
Phishing Attack via Adobe-Themed Lure Delivering ScreenConnect and Credential Harvesting Tools 0 A phishing campaign utilized a fraudulent Adobe-themed website to trick victims into downloading and executing ScreenConnect remote access software. Once initial access was established, threat actors conducted interactive operations deploying multiple malicious binaries including a credential harvesting tool named password.exe. The attackers also exploited the ms-phone URI handler to launch the Phone Link application, attempting to socially engineer victims into linking their mobile devices to potentially capture notifications, authentication prompts, and sensitive information. The attack demonstrates a multi-stage compromise focusing on persistence establishment, credential theft, and preparation for potential lateral movement across the victim's network infrastructure. Join the discussion | AlienVault OTX General | 04/23/2026, 08:27:32 UTC Added: 04/23/2026, 09:06:03 UTC |
Showing 1 to 1 of 1 result