SlowMist Cosine: A phishing group launches a new round of phishing attacks via Google subdomains, tricking users into revealing account passwords
SlowMist founder Cosine posted on social media that the ENS lead developer was previously targeted by a phishing attack exploiting a vulnerability in the Google infrastructure. This phishing group deceives users with spoofed Google official phishing emails, making them believe they are under legal scrutiny. Although Google has upgraded its countermeasures, today, the phishing group is launching a new round of attacks, continuing to lure users to "google.com" subdomains, tricking them into revealing account passwords and immediately adding a Passkey.
Previously reported, ENS lead developer nick.eth stated on social media that he encountered an extremely complex phishing attack that exploited a vulnerability in the Google infrastructure, but Google refused to fix the vulnerability.
He indicated that the phishing email appeared very convincing, capable of passing DKIM signature verification and displayed normally by Gmail, and was placed in the same conversation with other legitimate security alerts. The attackers exploited Google's "sites" service to create a trustworthy "support portal" page. Because users see "google.com" in the domain, they mistakenly believe it is safe, so users need to remain cautious.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Berkshire Hathaway, owned by Buffett, holds more U.S. debt than the Federal Reserve
Satoshi Nakamoto's Bitcoin Holdings Exceed $100 Billion Again
Strategy's Bitcoin Holdings Currently Show a Floating Profit of Approximately $141 Billion
Trending news
MoreCrypto prices
More
