Legitimate authentication services like Gmail, Yahoo, and Microsoft are being targeted by new attacks. Users of these email services have received a warning about a new dangerous phishing attack, through which attackers steal login details and gain access to their accounts.
The attack "bypasses two-factor authentication (2FA) through session hijacking and capturing credentials in real time," researchers at SlashNext, who identified the scam, have discovered, according to The Sun.
The scammers first send users a link via email, which infects their device once they click on it. This link then redirects users to a malicious server, which appears as a fake login page.
This fake page mimics the real login page, making it very difficult to distinguish it as a scam. The situation is made even more dangerous because no security warnings appear, leading many users to believe they are on the official site. Once users enter their credentials, they unknowingly give the scammers access to their accounts.
This new phishing campaign, known as Astaroth, not only captures login credentials, but also "rapidly captures two-factor authentication (2FA) codes and cookies as soon as they are generated," the researchers point out.
This allows attackers to bypass 2FA protection “with great speed and accuracy.” So, even if you are sent an SMS code to log into your account, attackers can capture it in real time. /Telegraph/
Promo
Advertise here
From El Taxi
From Camelot Kosovo
From Jumbo
From Super Viva
Prigozhin - Putin war
More
From Rubric
A Norwegian man has filed a complaint after ChatGPT said he killed his children
Mercedes tests humanoid robot Apollo – footage of the robot assembling engine parts in German factories published
Nvidia has the smallest supercomputer with artificial intelligence, it costs only $ 3000
A Norwegian man has filed a complaint after ChatGPT said he killed his children
Elon Musk's AI chatbot is asked if he thinks Trump is a Russian asset - his answer is surprising
Samsung announces the official launch of One UI 7 starting April 7th
Be careful what you say in the presence of Alexa, everything is sent to Amazon
Taara, the new laser internet technology - will it be able to challenge Musk's satellites?
After 15 years online, LiveLeak - the horror video site - is shutting down
104.5m² comfort - Luxurious apartment with an attractive view for your offices
Invest in your future - buy a flat in 'Arbëri' now! ID-140
Apartment for sale in Fushë Kosovë in a perfect location - 80.5m², price 62,000 Euro! ID-254
Ideal for office - apartment for rent ID-253 in the center of Pristina
Buy the house of your dreams in Pristina - DISCOUNT, grab the opportunity now! ID-123
For only €29.95 with Telegrafi Deals and Melodia PX, these sneakers can be yours!
Deal: Melodia Px and Telegrafi Deals have agreed to offer women's Nike sneakers for only €69.95, until March 09th!
Will we see you at the Balkan eCommerce Summit 2025?
Exclusively on Telegrafi Deals – Nike REAX from €101 to €79.95!
What does DeepSeek AI mean for US relations with China?
Most read
'Godet' Xheneta publishes phone taps with Drilon where he has an intimate conversation with her and tells her he is no longer interested in Sara
Driloni reacts after the publication of Xheneta's phone conversations: She didn't give him the gesture and is asking me for it - she wants to be in the spotlight
Xheneta responds to Drilon again: You called me in Dubai, I have everything on my phone - your manager begged me to delete the videos
US arms manufacturers 'will be kept out' of massive new EU defence spending plan
After the publication of the phone taps, Xheneta reacts: I was threatened by Driloni and his manager
"We are interested in leading the government", Haziri: No talks with LVV, LDK has met with Krasniqi and Haradinaj