Home
Forums
New posts
Search forums
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Search forums
Menu
Log in
Register
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Home
Forums
CARDING & HACKING
Carding News
Wiki-Slack: How Wikipedia Helps Spread malware in Work Chats
Message
<blockquote data-quote="Brianwill" data-source="post: 711" data-attributes="member: 15"><p>Developers should clearly teach the Slack messenger to format text correctly.</p><p></p><p>Cybersecurity specialists from the eSentire Threat Response Unit have identified an interesting technique for cyber attacks on employees of companies that use the corporate messenger Slack. The method is called Wiki-Slack .</p><p></p><p>Attackers choose a topic that is interesting for potential victims in Wikipedia, go to the first page of the corresponding article and make an edit. The trick is to add a legitimate link-a footnote. Under certain conditions, when such a Wikipedia article is copied and pasted into a corporate Slack chat, the messenger generates an address that was not originally included in the text.</p><p></p><p>This happens if three conditions are met:</p><p></p><p>1. There is a footnote at the end of the first paragraph.</p><p></p><p>2. The first word of the second paragraph is an abbreviation of the domain name like in, at, com, net, etc.</p><p></p><p>3. The above points should fit in the first 100 words of the article.</p><p></p><p>Due to text formatting issues, Slack doesn't properly handle paragraph breaks and creates a new hyperlink where it shouldn't be. There is nothing illegal in the edits themselves, so the scheme is extremely profitable for scammers.</p><p></p><p>eSentire notes that attackers can use Wikipedia statistics to select the most visited pages. Fake links can be used for phishing or spreading malware.</p><p></p><p>According to the researchers, the scale of such attacks can be easily increased using language models like GPT-3. Experts recommend that companies exercise caution and use endpoint monitoring tools to detect and block threats in time.</p></blockquote><p></p>
[QUOTE="Brianwill, post: 711, member: 15"] Developers should clearly teach the Slack messenger to format text correctly. Cybersecurity specialists from the eSentire Threat Response Unit have identified an interesting technique for cyber attacks on employees of companies that use the corporate messenger Slack. The method is called Wiki-Slack . Attackers choose a topic that is interesting for potential victims in Wikipedia, go to the first page of the corresponding article and make an edit. The trick is to add a legitimate link-a footnote. Under certain conditions, when such a Wikipedia article is copied and pasted into a corporate Slack chat, the messenger generates an address that was not originally included in the text. This happens if three conditions are met: 1. There is a footnote at the end of the first paragraph. 2. The first word of the second paragraph is an abbreviation of the domain name like in, at, com, net, etc. 3. The above points should fit in the first 100 words of the article. Due to text formatting issues, Slack doesn't properly handle paragraph breaks and creates a new hyperlink where it shouldn't be. There is nothing illegal in the edits themselves, so the scheme is extremely profitable for scammers. eSentire notes that attackers can use Wikipedia statistics to select the most visited pages. Fake links can be used for phishing or spreading malware. According to the researchers, the scale of such attacks can be easily increased using language models like GPT-3. Experts recommend that companies exercise caution and use endpoint monitoring tools to detect and block threats in time. [/QUOTE]
Name
Verification
Post reply
Home
Forums
CARDING & HACKING
Carding News
Wiki-Slack: How Wikipedia Helps Spread malware in Work Chats
Top