Obsidian plugin was abused to deploy a remote access trojan
Summary
Threat intelligence about a targeted social engineering campaign abusing the Obsidian note-taking app to deliver the PHANTOMPULSE RAT. The report covers attacker techniques, cross-platform execution, a blockchain-based C2, and practical detection/mitigation guidance.