Tag: indeed.com

EvilProxy uses indeed.com open redirect for Microsoft 365 phishing
News

EvilProxy uses indeed.com open redirect for Microsoft 365 phishing

Key executives in U.S.-based companies are the focus of a freshly discovered phishing effort that takes advantage of open redirects from the Indeed jobs website. The threat actor is utilizing the phishing service EvilProxy, which can gather session cookies and be utilized to get around multi-factor authentication (MFA) systems. Executives and high-ranking personnel from a variety of industries, including electronic manufacturing, banking and finance, real estate, insurance, and property management, are the targets of this phishing attempt, according to researchers at Menlo Security. Redirects are legitimate URLs that take visitors automatically to another online location read more EvilProxy uses indeed.com open redirect for Microsoft 365 phishing.