✨ The Containment Era is here. Secure AI workloads before they breach. →The Containment Era is here. →The Containment Era is here. →Explore ✨

Under Active Attack

Industry Category

Graphic Design/Web Design

Breach intelligence, attack campaigns, and threat reports targeting the Graphic Design/Web Design sector.

1 threat report

Page 1 of 1

Explore Other Sectors

Aerospace/Aviation

Airlines/Aviation

Apparel/Fashion

Architecture/Planning

Artificial Intelligence

Artificial Intelligence/Machine Learning

Aviation/Aerospace

Banking/Mortgage

Biotechnology/Greentech

Blockchain/Cryptocurrency

Broadcast Media

Broadcasting Media

Broadcasting/Media

Building Materials

Business Supplies/Equipment

Capital Markets/Hedge Fund/Private Equity

Civic/Social Organization

Civil Engineering

Cloud Computing

Cloud Computing/SaaS

Commercial Facilities

Commercial Real Estate

Computer Hardware

Computer Networking

Computer Software/Engineering

Computer/Network Security

Consumer Electronics

Consumer Services

Critical Manufacturing

Cryptocurrencies

Customer Services

Dating/Personal Services

Education Management

Electrical/Electronic Manufacturing

Emergency Services

Energy/Oil/Solar/Greentech

Entertainment/Movie Production

Environmental Services

Events Services

Facilities Services

Fashion/Apparel

Financial Services

Food Production

Fortune 500 companies

Gambling/Casinos

Government Administration

Government Facilities

Government Relations

Graphic Design/Web Design

Health Care / Life Sciences

Higher Education/Acadamia

Human Resources/HR

Individual/Family Services

Industrial Automation

Information Services

Information Technology/IT

International Affairs

International Trade/Development

Investment Banking/Venture

Investment Management/Hedge Fund/Private Equity

Law Enforcement

Law Practice/Law Firms

Legislative Office

Logistics/Procurement

Luxury Goods/Jewelry

Management Consulting

Marketing/Advertising/Sales

Mechanical or Industrial Engineering

Media Production

Medical Equipment

Medical Practice

Military Industry

Museums/Institutions

Newspapers/Journalism

Non-Profit/Volunteering

Oil/Energy/Solar/Greentech

Online Publishing

Outsourcing/Offshoring

Package/Freight Delivery

Pharmaceuticals

Political Organization

Primary/Secondary Education

Professional Training

Public Relations/PR

Publishing Industry

Railroad Manufacture

Real Estate/Mortgage

Recreational Facilities/Services

Religious Institutions

Renewables/Environment

Research Industry

Retail Industry

Rural Healthcare

Security/Investigations

Staffing/Recruiting

Telecommunications

Trucking/Freight

Venture Capital/VC

Water and Wastewater

Water and Wastewater Systems

Water and Wastewater Treatment

Water, Waste, Steam, and Air Conditioning Services

Water/Wastewater Management

Water/Wastewater/Utilities

Showing 1–1 / 1 reports

Impact· medium

Computer Software/Engineering

Viral TikTok Malware Campaign Bypasses Security via Social Engineering and Infostealer

In October 2024, cyber attackers launched a widespread malware campaign on TikTok, leveraging viral videos that promised free software activations—such as Photoshop—to lure unsuspecting users. Victims were instructed to execute malicious PowerShell scripts, leading to the silent download of infostealers like AuroStealer and additional payloads that achieved persistence and utilized advanced in-memory code execution techniques. The highly effective social engineering exploited TikTok’s reach, spreading through multiple videos and targeting users seeking pirated software, resulting in significant risks of credential theft and further compromise. This attack exemplifies the growing trend of financially motivated threat actors exploiting popular social platforms for initial access. The use of self-compiling malware and in-memory shellcode injection reflects advanced tactics that bypass traditional security controls, highlighting the urgent need for robust endpoint protection, increased security awareness, and stricter monitoring of social media for malicious content.

5 months ago

Kill Chain

IC

Initial Compromise(high)

PE

Privilege Escalation(medium)

LM

Lateral Movement(low)

C&C

Command & Control(high)

E

Exfiltration(medium)

I

Impact(medium)

Read Report

[ INCIDENT RESPONSE // UNDER ATTACK? ]

Stop Active Cloud Data Exfiltration

Aviatrix Breach Lock helps teams instantly identify what data is leaving the environment, from which workload, and where it’s going — during an active breach.

Looking for threats in a different sector?

Browse All Threat Reports