Why it matters: An email-focused security firm released a blog post detailing a phishing attack targeting unsecured American Express and Snapchat sites. The identified exploit uses a known open redirect vulnerability that allows threat actors to specify a redirect URL, driving traffic to fraudulent sites designed to steal user information.

Maryland-based security firm INKY Security tracked attack activity related to the vulnerability from mid-May through mid-July. The phishing attack relies on a known open redirect vulnerability (CWE-601) and popular brand recognition to deceive and harvest credentials from unsuspecting Google Workspace and Microsoft 365 users.

The attacks targeted unsecured sites from Snapchat and American Express. Snapchat-based attacks resulted in more than 6,800 attacks over a two-and-a-half-month period. The American Express-based attacks were much more effective, affecting over 2,000 users in just two days.

Malicious actors have taken advantage of open-redirect vulnerabilities affecting AMEX & Snapchat domains to send #phishing emails targeting Google Workspace and Microsoft 365 users.” https://t.co/bTG2b7dLWY

— INKY (@InkyPhishFence) August 4, 2022

The Snapchat-based emails drove users to fraudulent DocuSign, FedEx, and Microsoft sites to harvest user credentials. Snapchat’s open redirect vulnerability was initially identified by openbugbounty more than a year ago. Unfortunately, the exploit still appears to be unaddressed.

microsoft

American Express appears to have remediated the vulnerability, which redirected users to an O365 login page similar to the one that the Snapchat-based attacks used.

microsoft

This specific phishing attack uses three primary techniques: brand impersonation, credential harvesting, and hijacked accounts. Brand recognition relies on recognizable logos and trademarks to create a sense of trust with the potential victim leading to the user’s credentials being entered into and harvested from the fraudulent site. Once harvested, hackers can sell the stolen information to other criminals for profit or use the information to access and obtain the victim’s personal and financial information.

Open redirect vulnerabilities don’t tend to get the same level of care and attention as other identified exploits. Additionally, most risk exposure is on the user rather than the site owner. The blog post provides additional background and guidance to help users stay safe and keep their data out of the wrong hands. These tips help users identify key terms and characters that may indicate if a redirect is occurring from a trusted domain.

Image credit: INKY Security

TECH NEWS RELATED

Vivo Y73t 5G with MediaTek Dimensity 700 SoC, 6000mAh Battery Launched: Price, Specifications

The Vivo Y73t is available with up to 12GB of RAM in China.

View more: Vivo Y73t 5G with MediaTek Dimensity 700 SoC, 6000mAh Battery Launched: Price, Specifications

Samsung Galaxy S23 series to launch earlier; In time for Holidays?

The leak floodgates are open for the Samsung Galaxy S23 series. The devices are presumably away from the release, but the leaks keep coming. So, we are thinking, are they really months away from release? Maybe not. According to a recent report, Samsung’s upcoming flagships may launch earlier. As per ...

View more: Samsung Galaxy S23 series to launch earlier; In time for Holidays?

Pixel 7, 7 Pro Google Play Console listing shows nothing interesting

The upcoming Google Pixel 7 series smartphones have appeared on the Google Play Console listing with a few key details. The console listing was spotted by Twitter user Mishaal Rahman. The Pixel 7 series comprises the base Pixel 7 and the Pixel 7 Pro smartphones. Moreover, both devices will break ...

View more: Pixel 7, 7 Pro Google Play Console listing shows nothing interesting

First-gen AirPods Pro users are seeing “Adaptive Transparency” option after updating to iOS 16.1 beta

Apple recently refreshed its AirPods Pro lineup with the second-generation version having some notable improvements over the original, including a new “Adaptive Transparency” mode. However, despite the new mode being exclusive to the second-gen Airpods Pro, some users are seeing the option to have it enabled on their first-gen ...

View more: First-gen AirPods Pro users are seeing “Adaptive Transparency” option after updating to iOS 16.1 beta

Xiaomi 12T Pro likely to feature the 200MP imaging system, while the Xiaomi 12T gets the 108MP camera

  As most of you should know, the Xiaomi 12T series will be launching globally very soon on 4 October 2022. There has been a couple of speculations on what the phone could feature, but here are some confirmed ones. Starting with the camera, it has been confirmed by Lei ...

View more: Xiaomi 12T Pro likely to feature the 200MP imaging system, while the Xiaomi 12T gets the 108MP camera

Realme 10 Design and Key Specifications Revealed by FCC Certification Ahead of Launch

Realme is expected to launch the Realme 10 smartphone in the coming months. The upcoming Realme 10 with model number RMX3630 has been spotted on several certification sites including NBTC, EEE, and CQC in the past. A couple of days back the device was spotted on the Geekbench benchmark ...

View more: Realme 10 Design and Key Specifications Revealed by FCC Certification Ahead of Launch

How to Disable or Uninstall OneDrive in Windows 10

If you are bothered by those annoying OneDrive Pop-ups or do not want to use OneDrive, You can find below the steps to Disable or Uninstall OneDrive in Windows 10 computer. Disable/Uninstall OneDrive in Windows 10 While Microsoft provides the option to automatically backup Desktop, Documents/Photos Folders and Microsoft Office ...

View more: How to Disable or Uninstall OneDrive in Windows 10

PSA: Download These DLCs On PC Before Ubisoft Removes Them Forever

Earlier this year, Ubisoft revealed that several games would have their multiplayer components shut down in September. In spite of this statement, Ubisoft has now announced that the decommissioning of multiplayer modes will take place on October 1. However, in a recent blog post, the company announced that several ...

View more: PSA: Download These DLCs On PC Before Ubisoft Removes Them Forever

2023 Tata Tiago EV Vs Petrol Hatchbacks – i20, Baleno

Tecno Phantom X2 5G passes by FCC with huge cameras

Google Pixel 7 Series Design Revealed Ahead of October 6 Launch

Xiaomi 12T Series Prices Leaked Ahead of Launch, May Start at Roughly Rs 46,300

Fitbit Launches Sense 2 , Versa 4 and Inspire 3 in India: Prices, Features and More

OTT Releases this Week (September 26 – October 2, 2022): 777 Charlie, Blonde, Bullet Train, More Films and TV Shows Playing Now

Razer Edge 5G – the Nintendo Switch killer is coming

AirPods Pro 2 irony – environmentally unfriendly, impossible to repair

Google decided to shut down Stadia in early 2023 only after 3 years

Anker's new Soundcore Liberty earbuds has heart-rate tracking, ANC, and spatial audio

Marvel Snap Roadmap Teases Variant Rarity System, Guilds, & More

Mythic Quest Season 3 to hit Apple TV+ on 11 November

OTHER TECH NEWS

Top Car News Car News