“It’s a watering hole,” Maya breathed. “Not a file-based attack. A profile-based trojan. The malware wasn’t in the PDF. The PDF was a beacon activator.”
Maya pulled up Sarah K.’s profile. Everything looked legitimate. But then she clicked on the “About” section and scrolled to the very bottom. Hidden in the plaintext, formatted in white-on-white font, was a string of code: <!-- C2: 185.130.5.253:443 --> . linkedin ethical hacking: trojans and backdoors
“Leo, loved your work on the FinSecure incident. Let’s connect. – ‘Maya Chen’” “It’s a watering hole,” Maya breathed