Zendesk Under Siege: Scattered Lapsus$ Hunters Unleash Phishy Chaos in Latest Cyber Extortion Plot
Scattered Lapsus$ Hunters are back, targeting Zendesk users with phishing domains like “znedesk.com.” These cybercriminals are weaponizing helpdesk tickets to inject remote-access trojans, potentially compromising corporate networks. Zendesk users beware—your support portal might just be a gateway for these sneaky cyber supervillains.
Hot Take:
Oh, the irony! Scattered Lapsus$ Hunters are chasing customer service desks, leaving Zendesk users more frazzled than a tech support agent during a printer meltdown. It’s almost poetic how the hunters have gone from phishing for compliments to phishing for credentials, and it seems they’ve gone from the DMs straight to your IT department.
Key Points:
– Scattered Lapsus$ Hunters are targeting Zendesk users with phishing and impersonation campaigns.
– Over 40 typosquatted domains have been identified, mimicking Zendesk portals.
– The campaign is reminiscent of a previous attack on Salesforce, possibly by the same group.
– Attackers are using fake support tickets to deploy remote-access trojans.
– The group is part of a cybercrime “supergroup” combining expertise from various notorious crews.