「Starkiller」フィッシングサービスが本物のログインページとMFAをプロキシ
この新しいフィッシング・アズ・ア・サービスは巧妙に偽装されたリンクを使用してターゲット企業の本物のウェブサイトを読み込み、被害者と正規サイトの間でリレーとして機能します。ユーザー名、パスワード、多要素認証コードを正規サイトに転送し、その応答を返すことで、従来の静的コピー型フィッシングサイトよりも検出が困難な手法を提供しています。
関連記事
A security researcher discovered that IPv6's massive address space combined with a botguard bypass could expose any Google user's phone number. The vulnerability allowed attackers to potentially leak phone numbers through systematic enumeration of IPv6 addresses.
A security vulnerability allowed attackers to obtain any Google user's phone number by exploiting IPv6's address space and bypassing botguard protections. The flaw exposed phone numbers through rate limit manipulation and infrastructure weaknesses.
DDoSecrets has released 410 GB of heap dump data obtained from a hack of TeleMessage's archive server. The data includes information from the company's customers, which reportedly include law enforcement agencies and financial institutions.
An analysis of the Android Telegram client Telega found that it routes network traffic through a Man-in-the-Middle (MitM) infrastructure located in Russia, raising serious security and privacy concerns for users.
TeleMessage's customer list includes DC Police, Andreessen Horowitz, JP Morgan, and hundreds of other organizations, according to analysis of 410 GB of Java heap dumps from the company's archive server.