Cadastre-se agora para um orçamento mais personalizado!

New Phishing-as-a-Service (Phaas) identified by Resecurity

05 de setembro de 2023 Hi-network.com

The new Phaas called EvilProxy is advertised in the dark web and uses Reverse Proxy to harvest valid session cookies and bypass 2FA authentication. According to Resecurity, this new method highlights the increase of attacks on online services and MFA authorisation mechanisms. Essentially, EvilProxy generates phishing links that compromise customer accounts belonging to Apple, Facebook, GoDaddy, GitHub, Google, Dropbox, and Instagram, among others. It was initially detected in May 2022, were the group demonstrated how the Phaas can be used to access victims' accounts. So far, Resecurity's team has collected domain names and URLs related to the EvilProxy infrastructure and some of these hosts have been mapped following the attacks against employees from Fortune 500 companies.

tag-icon Tags quentes : Cibercrime

Copyright © 2014-2024 Hi-Network.com | HAILIAN TECHNOLOGY CO., LIMITED | All Rights Reserved.