Malicious actors are using a cloud attack tool named Xeon Sender to conduct SMS phishing and spam campaigns on a large scale by abusing legitimate services.
« Attackers can use Xeon to send messages through multiple software-as-a-service (SaaS) providers using valid credentials for the service providers, » SentinelOne security researcher Alex Delamotte said in a report shared with The Hacker News.