At the end of a pretty busy day, I finally found a few minutes to check out the incoming notifications from Matrix. I noticed a kit that targets Kraken customers because their icon reminds me of the ghost from Pacman, and just today I got the vintage Pacman console π
The domain used for the attack is krakeeen[.]top. It was registered three days ago and Matrix keep the monitoring active waiting for the kit. It arrives some hours ago. Thanks attacker π
At the moment the only reports on this matter are those made by Matrix.
As usual, the kit is PHP based.
Every now and then someone tells me that my posts seem like I don’t love it! That’s not true, I really like PHP and often the code is badly written and therefore sucks.
I love PHP and its community!!!!!
As for the stolen credentials, the kit requires that they be sent to the email address hardeyholar47@gmail[.]com.
Of course I added it to the list that I hope you already know π
Emiliano Carlesi's blog 