Fake Google Security site uses PWA app to steal credentials, MFA codes

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time ...
Windows Report

New Google-Themed Phishing Attack Turns Browser Features Into Spyware

A fake Google security site installs a malicious PWA that steals OTPs, crypto wallets, and location data. Here’s how the ...

This new phishing campaign uses a fake Google Account security page to steal passcodes and more

Hackers don't need an app to steal login credentials anymore - a PWA will do.
Techzine Europe

Fake Google Security page hijacks browser as proxy for attackers

A seemingly legitimate security notification from a Google account turns out to be part of a sophisticated phishing campaign ...