Phlox TempestPhlox Tempest

Also known as: Phlox Tempest · DEV-0796

Known aliases
2

Profile

Phlox Tempest is a threat actor responsible for a large-scale click fraud campaign targeting users through YouTube comments and malicious ads. They use ChromeLoader to infect victims' computers with malware, often delivered as ISO image files that victims are tricked into downloading. The attackers aim to profit from clicks generated by malicious browser extensions or node-WebKit installed on the victim's device. Microsoft and other cybersecurity organizations have issued warnings about this ongoing and prevalent campaign.

Aliases· 2

Phlox TempestDEV-0796

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Mustard Tempest
Actor
TAG-124
Actor
Storm-0249
Actor
Storm-0381
Actor
Flax Typhoon
Actor
FlowerStorm
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.