PANews reported on April 15th that, according to Cointelegraph, Elastic Security Labs has discovered a new type of social engineering attack targeting users in the crypto and financial industries. Attackers are using the community plugin feature of the note-taking application Obsidian to spread malware that can control victims' devices. The attackers use sophisticated social engineering on LinkedIn and Telegram, impersonating venture capital firms and establishing a business relationship by discussing financial services, particularly cryptocurrency liquidity solutions. They trick victims into using Obsidian to open cloud-hosted repositories controlled by the attackers and enabling community plugin synchronization. The malicious plugin then silently executes the attack chain. The attack runs on both Windows and macOS and deploys a previously undocumented remote access trojan, PHANTOMPULSE, which uses on-chain transaction data from at least three different blockchain networks for decentralized command and control.