Source |
Network World |
Identifiant |
358660 |
Date de publication |
2017-04-25 17:54:20 (vue: 2017-04-25 17:54:20) |
Titre |
Russian hackers use OAuth, fake Google apps to phish users |
Texte |
The Russian hacking group blamed for targeting U.S. and European elections has been breaking into email accounts, not only by tricking victims into giving up passwords, but by stealing access tokens too. It's sneaky hack that's particularly worrisome, because it can circumvent Google's 2-step verification, according to security firm Trend Micro. The group, known as Fancy Bear or Pawn Storm, has been carrying out the attack with its favored tactic of sending out phishing emails, Trend Micro said in a report Tuesday. To read this article in full or to leave a comment, please click here |
Envoyé |
Oui |
Condensat |
access according accounts apps article attack bear because been blamed breaking but can carrying circumvent click comment elections email emails european fake fancy firm full giving google group hack hackers hacking has here itsâ favored known leave micro not oauth only out particularly passwords pawn phish phishing please read report russian said security sending sneaky stealing step storm tactic targeting that tokens too trend tricking tuesday use users verification victims worrisome â it â the â to |
Tags |
|
Stories |
APT 28
|
Notes |
|
Move |
|