分散的Lapsus$猎人通过假网站和工单对Zendesk用户进行钓鱼攻击，窃取凭证并部署恶意软件。 Scattered Lapsus$ Hunters behind phishing attack on Zendesk users via fake sites and tickets, stealing credentials and deploying malware.

针对Zendesk用户的新钓鱼活动已被关联到Scattered Lapsus$ Hunters组织，该组织利用虚假支持网站和恶意客服工单窃取凭证并部署远程访问木马。 A new phishing campaign targeting Zendesk users has been linked to the Scattered Lapsus$ Hunters group, which is using fake support sites and malicious helpdesk tickets to steal credentials and deploy remote-access trojans. 已有40多个模仿Zendesk的错拼域名被创建，采用了类似之前对Salesforce攻击的策略。 Over 40 typosquatted domains mimicking Zendesk have been created, using tactics similar to a prior attack on Salesforce. 袭击者提交了令人信服的假票,以欺骗辅助人员安装恶意软件,从而有可能使网络渗透。 The attackers submit convincing fake tickets to trick support staff into installing malware, potentially enabling network infiltration. 证据表明该运动可能已经成功,发现第三方Zendesk供应商暴露了敏感用户数据,从而出现了违反规则的情况。 Evidence suggests the campaign may already have succeeded, with a Discord breach traced to a third-party Zendesk provider exposing sensitive user data. 虽然怀疑同一团体属于同一团体,但专家们提醒注意复制活动的可能性。 While the same group is suspected, experts caution the possibility of copycat activity.