Cybersecurity

Hackers Abuse SniperDz PhaaS Ecosystem for Brand Impersonation and Browser Hijacking

51 sec read20 views0 listens

Summary

Researchers from the Threat Intelligence Team at Horizon Information Systems (Horizon IS) have uncovered a sophisticated phishing campaign orchestrated by hackers leveraging the SniperDz Phishing-as-a-Service (PhaaS) platform. This campaign involves brand impersonation and browser hijacking to trick victims into providing sensitive information.

Key Findings:

Brand Impersonation: The attackers mimic legitimate brands such as PayPal, Microsoft, and Apple to lure users into clicking on malicious links.
Browser Hijacking: A unique JavaScript file is used to register browser push notifications with a recurring VAPID public key across multiple campaigns.
PhaaS Ecosystem: SniperDz provides the infrastructure for phishing attacks, including tracking domains, landing pages, and redirect funnels.

Technical Details:

Tracking Domains: win.feezossl[.]xyz and win.anababayala[.]com are used to track victim activity.
Landing Pages: aff.bnaoswhye[.]shop is an additional phishing domain associated with the campaign.
VAPID Public Key: BHR8bZ93X3YNBNQcN_dGRYtnWqdsJXR2bX

Read the full article at Cyber Security News

Want to create content about this topic? Use Nemati AI tools to generate articles, social posts, and more.

Every Persona Game and Spin-Off in Order

Atlus has officially expanded the Persona franchise to 21 titles following the announcement of Persona 4 Revival and Persona 6. This growth represents the series transformation from a niche spin-off into a leading RPG multimedia brand with broad plat...

Ali Nemati

Cybersecurity1 day ago26 sec read

Ubiquiti security advisory (AV26-589)

Ubiquiti released a security advisory on June 10, 2026, addressing critical vulnerabilities in multiple UniFi products and recommending immediate updates. This update is crucial for developers and tech professionals to ensure the security of their ne...

Ali Nemati

Real Estate & Home2 days ago30 sec read

Meghan Markle Shares Sweet Photos of Prince Harry, Archie, and Lilibet 'Springing Into Summer' at Family's $15 Million Montecito Mansion

Meghan Markle shared personal photos at her Montecito mansion highlighting her lifestyle brand, As Ever, and family summer plans ahead of Prince Harry’s planned visit to the United Kingdom. Media professionals should observe how high-profile figures ...

Ali Nemati

Cybersecurity3 days ago29 sec read

As AI answer engines rewrite search, Agency Platform pushes white-label SEO toward a new discipline

Answer Engine Optimization has emerged as a distinct marketing discipline designed to ensure brand visibility within AI-generated summaries on Google and Bing. For tech professionals and digital agencies, this shift necessitates moving beyond traditi...

Ali Nemati

Real Estate & Home3 days ago27 sec read

Just don't: Why AI-generated marketing content is a regulatory minefield for mortgage lenders

The use of AI-generated marketing content, particularly testimonials and endorsements in the mortgage industry, poses significant regulatory risks. The FTC's new rule, along with existing regulations like the MAPS Rule and UDAAP, strictly prohibits f...

Ali Nemati

Hackers Abuse SniperDz PhaaS Ecosystem for Brand Impersonation and Browser Hijacking

Summary

Key Findings:

Technical Details:

Related Articles

Every Persona Game and Spin-Off in Order

Ubiquiti security advisory (AV26-589)

Meghan Markle Shares Sweet Photos of Prince Harry, Archie, and Lilibet 'Springing Into Summer' at Family's $15 Million Montecito Mansion

As AI answer engines rewrite search, Agency Platform pushes white-label SEO toward a new discipline

Just don't: Why AI-generated marketing content is a regulatory minefield for mortgage lenders