Bit.ly Hackquick Jun 2026

Attackers scraped Bit.ly’s public API to identify accounts with high click volumes (indicators of marketing campaigns).

: Threat actors shorten their malicious payload URLs using trusted domains like Bitly. Bit.ly Hackquick

Similarly, fraudsters use VPN-rotating bots to click their own Bit.ly links repeatedly. They compete for "Hackquick" scripts that randomize user agents (Chrome, Safari, Firefox) to make fake clicks look organic. Attackers scraped Bit