Pick your Poison - A Double-Edged Email Attack

A sophisticated cyber-attack campaign has been identified, combining phishing techniques targeting Office365 credentials with malware delivery. The attackers use a file deletion reminder as a pretext, exploiting a legitimate file-sharing service to appear more credible. Upon opening a shared PDF file, users are presented with two hyperlinks: 'Preview' leads to a fake Microsoft login page for credential theft, while 'Download' initiates the installation of ConnectWise RAT malware. The malware establishes persistence through system services and registry modifications. This dual-threat approach emphasizes the need for user vigilance and education in recognizing phishing attempts and suspicious emails.

Pulse ID: 680fac69fa21735eedd5b785
Pulse Link: https://otx.alienvault.com/pulse/680fac69fa21735eedd5b785
Pulse Author: AlienVault
Created: 2025-04-28 16:27:21

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

"The anti-piracy campaign was … not exactly subtle. Its spots ran before movies in theaters and on home media from 2004–2008. One shows a teen girl clicking a big green "Download" button on a website promising "Feature Films"—but when she does so, large white text jumps onto a black backdrop: "You wouldn't steal a car." The text looks like it was applied with spray paint and a stencil.

What font is this? The site Fonts in Use suggests it was FF Confidential, designed by Just van Rossum in 1992.

Melissa Lewis, a reporter at the Center for Investigative Reporting, noticed Fonts in Use's identification, and she remembered that noted "computer person" Parker Higgins had been digging into the "very similar (font) Xband Rough." Lewis contacted van Rossum, who confirmed that Xband Rough was a clone of FF Confidential. "It's just been around forever and is ubiquitous," Lewis writes.

Picking up on these inquiries, a tinkerer going by the handle "Rib" then dug into a PDF from the anti-piracy campaign's archived website. A tool called FontForge indicated that the notable "spray-painted" font used in the PDF was, in fact, XBand Rough.

Van Rossum—who is the brother of Guido van Rossum, creator of the Python programming language—told TorrentFreak that he knew the anti-piracy campaign had used his font, and he knew that the Xband Rough clone existed. He did not know that the industry group had used the knock-off version in its campaign, but he found it "hilarious." Van Rossum, reached for comment by Ars, declined to comment."

https://arstechnica.com/gadgets/2025/04/you-wouldnt-steal-a-car-anti-piracy-campaign-may-have-used-pirated-fonts/

Seekee App: Die neue Suchmaschine für Serien- und Filmfans
#Filesharing #Streaming #Datenschutz #p2p #Seekee #StreamingAlternativen #TorrentApps https://sc.tarnkappe.info/ebd0b9

Porno-Abmahnung ohne Download: Wenn die IP-Adresse zur digitalen Falle wird
#Filesharing #Rechtssachen #PornoAbmahnung #RechtsanwaltKläner #Tauschbörse #Urheberrechtsverletzung #YussofSarwari https://sc.tarnkappe.info/1d1154

IPPC Law-Abmahnungen 2025: Porno-Tausch im Abmahn-Rausch
#Filesharing #Rechtssachen #Abmahnung #AyloPremiumLtd #DanielSebastian #IPPCLaw #Urheberrecht https://sc.tarnkappe.info/39e227

Abmahnfalle 2025: Diese Games führen zur Abmahnung durch RKA Rechtsanwälte
#Filesharing #Rechtssachen #Abmahnung #BitTorrent #PLAION #rkaRechtsanwälte #STALKER2 https://sc.tarnkappe.info/5ca894

@kuketzblog ist jetzt sozusagen mein IT-"Gemischtwarenladen"

Ich musste gestern jemandem eine sehr große Datei schicken und nutzte automatisch #WeTransfer. Danach dann so: "Moooooment mal...". Bei #Wikipedia gelesen, dass WeTransfer zwar ein niederländisches Unternehmen ist, aber Amazon-Server nutzt. Verdammt!

Also in Kuketz' Empfehlungsecke nachgeguckt und sich einen besseren #Filesharing|Dienst rausgesucht DANKE!!!

#unplugtrump #unplugamazon

@disroot

Filesharing-Abmahnungen 2025: Rasch Rechtsanwälte mahnen erneut massenhaft Musikfans ab
#Filesharing #Rechtssachen #Abmahnung #Musikindustrie #RaschRechtsanwälte #Tauschbörsen #Urheberrecht https://sc.tarnkappe.info/86771c

Filesharing-Abmahnungen 2025: Kanzlei Nimrod verschickt wieder massenhaft Schreiben
#Filesharing #Rechtssachen #Abmahnung #FrederikBockslaff #JacobScheffen #NimrodRechtsanwälte #Urheberrecht https://sc.tarnkappe.info/e0abb7

OpenCloud 2.0 soll Sicherung großer Datenmengen vereinfachen

Nach einer ersten Testversion im Februar geht der ownCloud-Fork OpenCloud in die Vollen und präsentiert mit Version 2.0 sein kommerzielles Angebot.

https://www.heise.de/news/OpenCloud-2-0-soll-Sicherung-grosser-Datenmengen-vereinfachen-10330679.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Dropden.com offline: Freehoster mit technischem Fehler oder Abschaltung?
#Filesharing #Sharehoster #Blockierungen #filehoster #Geoblocking #nichterreichbar https://sc.tarnkappe.info/735a24

Urteile gegen Filesharer: 12 bzw. 9 Monate Haft für zwei Uploader
#Filesharing #Rechtssachen #DigitalePiraterie #Haftstrafe #TheScene #TorrentSzene #Torrents #Urheberrecht https://sc.tarnkappe.info/54c65c

600,000 customers affected: South Korean ISP allegedly installed malware

A Korean ISP is said to have deliberately installed malware on customer computers in order to throttle the use of file-sharing services.

https://www.heise.de/en/news/600-000-customers-affected-South-Korean-ISP-allegedly-installed-malware-9783736.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Frommer Legal 2025: Die Abmahnwelle lebt – diese Werke stehen im Fokus
#Filesharing #Rechtssachen #Abmahnung #BitTorrent #FrommerLegal #p2p #Urheberrecht https://sc.tarnkappe.info/32debf

FilePizza • Your files, delivered.
Peer-to-peer file transfers in your browser.

Using WebRTC, FilePizza eliminates the initial upload step required by other web-based file sharing services. Because data is never stored in an intermediary server, the transfer is fast, private, and secure.

https://file.pizza

Use FilePizza App to Send Someone a File Without Using Any Cloud Storage

“FilePizza isn’t the only application like this. There’s p2pfileshare.com and sharedrop.io, to name a couple. FilePizza stands out because of the simplicity—just share a file and copy the URL—and because it has a unique URL. These links only work as ...continues

See https://gadgeteer.co.za/use-filepizza-app-to-send-someone-a-file-without-using-any-cloud-storage/

If I record myself reading a copyrighted book and share the recording with some friends (for free), is that copyright infringement?

If so, can I claim fair use by, idk, dressing up in a funny outfit or something and turning the reading into a performance art piece, which I then record and share?

Is it copyright infringement to extract the audio from said recording of such a performance art piece and share that? There must be a legal way to do this...

heise+ | Die rechtlichen Konsequenzen illegalen Streamings

Zig Filme exklusiv bei zig Anbietern – die Fragmentierung des Streamingmarktes führt Nutzer zu illegalen Plattformen. Das kann strafrechtliche Folgen haben.

https://www.heise.de/ratgeber/Die-rechtlichen-Konsequenzen-illegalen-Streamings-10293930.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon