EvilProxy Phishing Attack Targets Indeed Job Platform

Threat Level – Red | Vulnerability Report
Download PDF

A new phishing campaign has emerged, specifically targeting high-profile US executives. This campaign takes advantage of open redirects from the jobs platform Indeed and employs EvilProxy to pilfer session cookies. Stolen session cookies bypass all authentication mechanisms, including multi-factor authentication (MFA), potentially granting unauthorized access to attackers.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox