Website
trello.com
Tags
Phishing Download Exfiltration
Phishing
Attackers can upload malicious files to Trello, make it public, and share the direct download link of the file with target users. More information: https://twitter.com/_theVIVI/status/1483957453578510344
Command and Control
None
Exfiltration
Attackers can upload files to Trello and share the direct download link to themselves to download the exfiltrated data.
Download
Attackers can upload malicious files to Trello and use the direct download link to drop files on a target machine.
Service Provider
Trello
Sample
Created: 2022-01-20
Last Update: 2022-01-20
Credits: Gabriel Mathenge - @_theVIVI