Scworld
Phishing Campaign Targets European Organizations Using HTML Attachments and Telegram Bots
First seen 12 Nov 2025, 19:02 UTC
•
•81% similarity
•30.6
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
A sophisticated phishing campaign has been identified in Central and Eastern Europe, targeting various sectors including manufacturing and government. Cybercriminals are using HTML attachments with embedded JavaScript to create convincing login interfaces that impersonate trusted brands, while also utilizing Telegram bots to facilitate credential theft. This operation effectively evades traditional email security measures.
ThreatCluster AI