Cybercriminals orchestrated a sophisticated phishing campaign, leveraging the EvilProxy phishing framework to exploit an open redirect vulnerability on the job search platform Indeed.com. The primary objective was to harvest Microsoft 365 credentials from high-ranking executives, especially those based in the US across various sectors including Banking, Insurance, Property Management, and Manufacturing. Read More..
EvilProxy uses indeed.com open redirect for Microsoft 365 Phishing
- Details
- BleepingComputer