Confiant

Home
Notes
Archive
About
Analyzing a Live AiTM Attack Targeting Google Accounts via Malvertising
We captured a malvertising campaign delivering an Adversary-in-the-Middle (AiTM) kit. Here, we unpack a paradox— an advanced payload undermined by…
Published on Roshan  
Malvertiser “D-Shortiez” abuses WebKit back button hijack in forced-redirect campaign
Over the last few years, as AdTech and browser security has continued to mature, many malvertisers have moved on from forced redirect campaigns that…
  Confiant and Eliya Stein
Disrupting 59M Malicious Impressions: Inside D-Shortiez Testing Infrastructure and Campaign Management
Two clusters, one password, and the automated harvesting that blocked campaigns before deployment
  Confiant and Michael Steele
The Curious Case Of MutantBedrog's Trusted-Types CSP Bypass
MutantBedrog is a malvertiser that caught our attention early summer ’24 for their highly disruptive forced redirect campaigns and the unique JavaScript…
  Confiant and Eliya Stein
How One "Crypto Drainer" Template Facilitates Tens Of Millions Of Dollars In Theft
Crypto Drainers are phishing pages that lure victims into signing malicious transactions that allow the attacker to siphon their crypto and NFTs.
  Confiant and Eliya Stein
A Whirlwind Tour Of Crypto Phishing
The post-pandemic world has seen cryptocurrencies and blockchain products in general catapult in valuation and adoption.
  Confiant and Eliya Stein
How File Hashes Fail As A Malware Detection Heuristic
In this blog post we take a trip downstream from malvertising delivery mechanisms and take a close up look at a fake Flash update landing page that was…
  Confiant and Eliya Stein
Confiant
Field Intelligence for the Ad Economy
Recommendations
User's avatar
Roshan
Roshan

Confiant

Field Intelligence for the Ad Economy
AboutArchiveRecommendationsSitemap
© 2026 Confiant Threat Intelligence · PrivacyTermsCollection notice
Start your SubstackGet the app
Substack is the home for great culture