Guardio Labs has revealed a critical vulnerability in the Opera browser that allows malicious extensions to exploit Private APIs, leading to severe security risks such as screen capturing …
Author: Guardio-Security
“`html
Short SummaryThe article discusses a significant phishing campaign named “EchoSpoofing,” which exploits Proofpoint’s email protection service to send millions of perfectly spoofed emails from well-known brands like Disney, …
By Oleg Zaytsev (Guardio Labs)
Guardio Labs discovered a vulnerability in the Microsoft Edge browser, designated CVE-2024–21388. This flaw could have allowed an attacker to exploit a private API, initially intended …
“SubdoMailing” — Thousands of Hijacked Major-Brand Subdomains Found Bombarding Users With Millions of Malicious Emails
Read More
By Nati Tal, Oleg Zaytsev (Guardio Labs)
Guardio Labs uncovers a sprawling campaign of subdomain …
“Scammers Paradise” —Exploring Telegram’s Dark Markets, Breeding Ground for Modern Phishing Operations
Read More
By Oleg Zaytsev, Nati Tal (Guardio Labs)
Over the last few years, the phishing ecosystem has been “democratized. …
“MyFlaw” — Cross Platform 0-Day RCE Vulnerability Discovered in Opera’s Browser
Read More
By Oleg Zaytsev (Guardio Labs)
The Guardio Labs research team uncovered a critical zero-day vulnerability in the popular Opera …
“EtherHiding” — Hiding Web2 Malicious Code in Web3 Smart Contracts
Read More
By Nati Tal, Oleg Zaytsev (Guardio Labs)
“EtherHiding” presents a novel twist on serving malicious code by utilizing Binance’s Smart …
“MrTonyScam” — Botnet of Facebook Users Launch High-Intent Messenger Phishing Attack on Business Accounts
Read More
By Oleg Zaytsev (Guardio Labs)
Facebook’s Messenger platform has been heavily abused in the past month …
“PhishForce” — Vulnerability Uncovered in Salesforce’s Email Services Exploited for Phishing Facebook Accounts In-The-Wild
Read More
By Oleg Zaytsev, Nati Tal (Guardio Labs)
Guardio’s Email Protection has detected a sophisticated email phishing …
“Malverposting” — With Over 500K Estimated Infections, Facebook Ads Fuel This Evolving Stealer Campaign
Read More
By Nati Tal (Guardio Labs)
Malverposting, the use of promoted social media posts and tweets to …
“FakeGPT” #2: Open-Source Turned Malicious in Another Variant of the Facebook Account-Stealer Chrome Extension
Read More
By Nati Tal (Guardio Labs)
Following our discovery of “FakeGPT”, the Facebook Ad Accounts stealer masquerading …
“FakeGPT”: New Variant of Fake-ChatGPT Chrome Extension Stealing Facebook Ad Accounts with Thousands of Daily Installs
Read More
By Nati Tal (Guardio Labs)
A Chrome Extension propelling quick access to fake ChatGPT …