> TritonInfoSec News
Home / Apr 17, 2026 / Story
0
#10 The Hacker News general April 16, 2026 at 11:02 UTC

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

By [email protected] (The Hacker News)

AI Summary

Security researchers identified REF6598 campaign abusing Obsidian note-taking application to deliver PHANTOMPULSE RAT targeting finance and cryptocurrency sectors. The novel social engineering attack leverages the popular cross-platform productivity tool as an initial access vector for remote access trojan deployment.

Read full article → https://thehackernews.com/2026/04/obsidian-plugin-…

Relevance score: 78.0/100

# More from April 17

  1. 1
    Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation The Hacker News
  2. 2
    ZionSiphon malware designed to sabotage water treatment systems BleepingComputer
  3. 3
    Operation PowerOFF identifies 75k DDoS users, takes down 53 domains BleepingComputer
  4. 4
    New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges BleepingComputer
  5. 5
    North Korea Uses ClickFix to Target macOS Users' Data Dark Reading
  6. 6
    Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face BleepingComputer
  7. 7
    US nationals sentenced for aiding North Korea’s tech worker scheme CyberScoop
  8. 8
    Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic The Hacker News
  9. 9
    Data breach at edtech giant McGraw Hill affects 13.5 million accounts BleepingComputer