Get a Pentest and security assessment of your IT network.

News

Tricky Phish Angles for Persistence, Not Passwords Krebs on Security

A new phishing tactic allows the attacker to gain full access to a users data stored in the cloud without actually stealing the account password. The attack is not exactly new: In 2017, for instance, phishers used a similar technique to plunder accounts at Google’s Gmail service. The resulting compromise is quite persistent and sidesteps two-factor authentication, and it seems likely we will see this approach exploited more frequently in the future. The most recent versions of this stealthy phish targeted corporate users of Microsoft’s Office 365 service, the same approach could be leveraged to ensnare users of many other cloud providers.”]

Source: https://krebsonsecurity.com/2020/01/tricky-phish-angles-for-persistence-not-passwords/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2