Scworld
HTML Attachment Phishing and Telegram Bots Target European Organizations
First seen 2 Dec 2025, 18:33 UTC
•
•81% similarity
•6.7
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
A sophisticated phishing campaign has been identified in Central and Eastern Europe, targeting various sectors including manufacturing, government, and telecommunications. The campaign utilizes HTML attachments containing malicious JavaScript to steal credentials, employing Telegram bots to facilitate the attack and bypass traditional email security measures. Organizations in Germany, Hungary, Slovakia, and the Czech Republic have been specifically affected.
ThreatCluster AI