Attackers can use the URL shortener, s.id, to masquerade their domain name and send the shortened link to their targets.
Command and Control
Malicious tools can be stored on an attacker's domain and then have the URL shortened. When the tools are needed, the shortened URL is used to download the tools.
Last Update: 2021-12-19