Phishing
Attackers can upload malicious files to Trello, make it public, and share the direct download link of the file with target users. More information: https://twitter.com/_theVIVI/status/1483957453578510344
Exfiltration
Attackers can upload files to Trello and share the direct download link to themselves to download the exfiltrated data.
Download
Attackers can upload malicious files to Trello and use the direct download link to drop files on a target machine.
Created: 2022-01-20
Last Update: 2022-01-20
Credits: Gabriel Mathenge - @_theVIVI