Water Dybbuk Using Open-Source Toolkits To Carry Out BEC Campaign

February 9, 2023

The Water Dybbuk threat group targets large companies around the world with a Business Email Compromise (BEC) campaign to steal credentials. The initial attack vector consists of spear-phishing emails with malicious attachments directing victims to malicious websites. The operation uses the BadaxxBot toolkit and Evilginx framework along with the JavaScript Obfuscator Tool to carry out the operation.