AT related malicious URL (hklogin.mizuhoscfglobal.com/oauth2/authorize?response_type=code&client_id=3dd7d8eb-520a-4617-aaae-ff6bd4f1b21b&scope=openid%20email%20profile&state=drrXUoRCxOYIbEqPLSeiOwPi5drDeovloPGAKw-9gVQ%3D&redirect_uri=https://hk.mizuhoscfglobal.com/scf/login/oauth2/code/fusionauth&nonce=ivSUJcIf2xml990WZzj1fY4MDoB7Y8yBGuZuKbM9X2U)

SID: 6008366Rev: 1EnabledDerived1 views
History
Fileantiphishing.rules
CreatedMay 28, 2026
UpdatedJune 25, 2026
Classificationsocial-engineering
alert http $HOME_NET any -> any any (msg:"AT related malicious URL (hklogin.mizuhoscfglobal.com/oauth2/authorize?response_type=code&client_id=3dd7d8eb-520a-4617-aaae-ff6bd4f1b21b&scope=openid%20email%20profile&state=drrXUoRCxOYIbEqPLSeiOwPi5drDeovloPGAKw-9gVQ%3D&redirect_uri=https://hk.mizuhoscfglobal.com/scf/login/oauth2/code/fusionauth&nonce=ivSUJcIf2xml990WZzj1fY4MDoB7Y8yBGuZuKbM9X2U)"; flow:established,to_server; http.uri; content:"/oauth2/authorize?response_type=code&client_id=3dd7d8eb-520a-4617-aaae-ff6bd4f1b21b&scope=openid%20email%20profile&state=drrXUoRCxOYIbEqPLSeiOwPi5drDeovloPGAKw-9gVQ%3D&redirect_uri=https://hk.mizuhoscfglobal.com/scf/login/oauth2/code/fusionauth&nonce=ivSUJcIf2xml990WZzj1fY4MDoB7Y8yBGuZuKbM9X2U"; startswith; fast_pattern; http.host; content:"hklogin.mizuhoscfglobal.com"; endswith; reference:url,openphish.com; reference:url,julioliraup.github.io/AT/signature.html?sid=6008366; classtype:social-engineering; sid:6008366; rev:1; metadata:signature_severity Major, created_et 2026_05_28, updated_et 2026_06_25;)

Metadata

signature severityMajor
created et2026_05_28
updated et2026_06_25

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!