ioc[.]one - OSINT Cyber Threat Intelligence Database

Show in Graph

Common Information

Type	Value
Value	Social Media Accounts - T1586.001
Category	Attack-Pattern
Type	Mitre-Attack-Pattern
Misp Type	Cluster
Description	Adversaries may compromise social media accounts that can be used during targeting. For operations incorporating social engineering, the utilization of an online persona may be important. Rather than creating and cultivating social media profiles (i.e. [Social Media Accounts](https://attack.mitre.org/techniques/T1585/001)), adversaries may compromise existing social media accounts. Utilizing an existing persona may engender a level of trust in a potential victim if they have a relationship, or knowledge of, the compromised persona. A variety of methods exist for compromising social media accounts, such as gathering credentials via [Phishing for Information](https://attack.mitre.org/techniques/T1598), purchasing credentials from third-party sites, or by brute forcing credentials (ex: password reuse from breach credential dumps).(Citation: AnonHBGary) Prior to compromising social media accounts, adversaries may conduct Reconnaissance to inform decisions about which accounts to compromise to further their operation. Personas may exist on a single site or across multiple sites (ex: Facebook, LinkedIn, Twitter, etc.). Compromised social media accounts may require additional development, this could include filling out or modifying profile information, further developing social networks, or incorporating photos. Adversaries can use a compromised social media profile to create new, or hijack existing, connections to targets of interest. These connections may be direct or may include trying to connect through others.(Citation: NEWSCASTER2014)(Citation: BlackHatRobinSage) Compromised profiles may be leveraged during other phases of the adversary lifecycle, such as during Initial Access (ex: [Spearphishing via Service](https://attack.mitre.org/techniques/T1566/003)).

Details		Published	Attributes	Title
Details	Website	2024-10-19	1	How To Choose The Best Advanced VPN For International Travel
Details	Website	2024-10-19	0	Cybersecurity Awareness Month: How to Stay Safe From Scams \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Details	Website	2024-10-19	0	7 Ways To Boost Cybersecurity And Privacy Using ChatGPT \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Details	Website	2024-10-19	0	Password Security
Details	Website	2024-10-19	0	October is Cybersecurity Awareness Month. Here's how to stay safe from scams \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Details	Website	2024-10-19	0	October is Cybersecurity Awareness Month. Here's how to stay safe from scams \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Details	Website	2024-10-19	0	Hacker allegedly behind attacks on FBI, Airbus, National Public Data arrested in Brazil \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-19	0	Cybersecurity for the everyday user: Simple steps to protect yourself online during festive season \| #cybercrime \| #infosec \| National Cyber Security Consulting
Details	Website	2024-10-18	1	The Ultimate List of CTF Tools: A Guide for Every Challenge Category
Details	Website	2024-10-18	0	Hacker accused of manipulating Bitcoin prices with a fake SEC tweet was arrested after allegedly searching 'what are some signs the FBI is after you' \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-18	0	25 Year Old Eric Council Jr. Arrested for Hacking SEC Twitter Account \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-18	0	Cybercrime Agency Issues New 2FA Warning For Gmail, Outlook, Facebook And X Users \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
Details	Website	2024-10-18	0	SEC X Account’s Alleged Hacker Arrested Over Fake Bitcoin ETF Post \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-18	5	Staying Anonymous Online: Tips And Tricks
Details	Website	2024-10-18	0	How to Fend Off Halloween Internet Scares
Details	Website	2024-10-17	0	How new romance scams are costing victims thousands \| #DatingScams \| #LoveScams \| #RomanceScans \| National Cyber Security Consulting
Details	Website	2024-10-17	0	Alabama Man Charged With Hacking SEC’s X Account \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-17	0	5 Ways to Reduce SaaS Security Risks
Details	Website	2024-10-17	1	Hackers turn to AI for cyber attacks, but unwittingly reveal their plans \| #cybercrime \| #infosec \| National Cyber Security Consulting
Details	Website	2024-10-17	0	Cybercrime Agency Issues New 2FA Warning For Gmail, Outlook, Facebook And X Users \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-17	1	Brazil's Polícia Federal arrested the notorious hacker USDoD \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Details	Website	2024-10-17	0	Alabama man arrested for role in SEC Twitter account hijacking
Details	Website	2024-10-17	0	FBI arrest Alabama man suspected of hacking SEC's X account
Details	Website	2024-10-16	1	Brazil's Polícia Federal arrested the notorious hacker USDoD
Details	Website	2024-10-16	0	The Hidden Dangers of Browser Extensions: Where Google’s MV3 Still Fall Short