A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time passcodes, harvesting cryptocurrency wallet addresses, and proxying attacker ...
14don MSN
This new phishing campaign uses a fake Google Account security page to steal passcodes and more
Hackers don't need an app to steal login credentials anymore - a PWA will do.
A fake Google security site installs a malicious PWA that steals OTPs, crypto wallets, and location data. Here’s how the attack works.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results