CryptoChameleon, a phishing tool, has surfaced, targeting cryptocurrency platforms like Binance and Coinbase, and the Federal Communications Commission (FCC). Victims predominantly use Apple iOS and Google Android devices with single sign-on (SSO) solutions: Okta, Outlook, and Google. Successful attacks captured sensitive data: password reset URLs and photo IDs. Cyber attackers also employ personalized outreach tactics: text messages and voice calls, impersonating legitimate support personnel.
You Might Be Interested In
- Massive Data Leak in Brazil: 223 Million Victims
- [CVSS 9+] Atlassian Fixes Critical Remote Code Execution Flaws
- [CVSS 7+] Linux Flaw Enables Root Privileges
- [CVSS 9+] Exploited Red Hat JBoss Vulnerability
- More Negative Developments in the Change Healthcare Crisis
- Synlab Italia Halts Activities Post Ransomware Attack