IOC Radar
TLP:WHITE2 IOCs

Hackers Inject Malicious JavaScript Into Okendo Reviews Widget to Target E-Commerce Sites

CP
Cyber Press
Published June 19, 2026Original Report

Malware Families

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREhttps://api.wigettick…http://cdn-static.oke…CAPABILITYRemcosStealcVICTIMunknown
Adversary
Infrastructure(2)
Capability(2)
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise2

TypeIndicatorConfidenceScoreFirst Seen
URLhttps://api.wigetticks.com/logout/private-response.php?8D1V4th3</code></td><td>The
intel-blogmalwarenetwork
High
58
Jun 20, 26
URLhttp://cdn-static.okendo.io/reviews-widget-plus/js/okendo-reviews.js
intel-blogmalwarenetwork
High
58
Jun 20, 26

IOC Relationship Graph

IOC Relationship Graph2 total IOCs
URL
URL2Malware2REPORTHackers Inject Malicious JRemcosStealc
scroll to zoom · drag to pan · click IOC to open