Users are impressed by the sophistication of the OAuth phishing attack via a fake Calendly link because of its highly specific and mythos-level details.
Based on 1 visible X reactions from 1 accounts; directional sample.
Ask a question below.
Published answers will appear here.
@turtlesoupy wow this is so specific. Mythos level phishing
This is a pretty elaborate phishing scheme that got me: this person poses as a bloomberg reporter, you DM, they give you a legit http://calend.ly link clicks through to a redirect when you enter your name to a similarly looking bad domain with a well-designed X authorization scheme (I stupidly clicked), after about 12 hours they started making well-written legitimate looking tweets (I'm reviving my old company, linking my Biomes repo) and something about Robinhood Crypto. I suspect it leads to a shitcoin launch but I logged out before that. To be honest I'm impressed! Thanks to Codex for the debug
This is a pretty elaborate phishing scheme that got me: this person poses as a bloomberg reporter, you DM, they give you a http://calend.ly link that redirects you to http://guess.calendly-bloomberg.com which has a well-designed X authorization scheme (I stupidly clicked), after about 12 hours they started making well-written legitimate looking tweets (I'm reviving my old company, linking my Biomes repo) and something about Robinhood Crypto. I suspect it leads to a shitcoin launch but I logged out before that. To be honest I'm impressed! Thanks to Codex for the debug
@turtlesoupy Almost got me too, I stopped at the "WTF does calendly need to write to my X account permissions" Fuckers
Users are impressed by the sophistication of the OAuth phishing attack via a fake Calendly link because of its highly specific and mythos-level details.
Based on 1 visible X reactions from 1 accounts; directional sample.
Ask a question below.
Published answers will appear here.