EvilProxy phishing attack targets executives on job search platform Indeed. The attack started in July and persisted into August 2023. EvilProxy leverages a phishing kit to intercept requests and harvest session cookies, bypassing multi-factor authentication. The primary targets are US organizations, particularly those in banking, finance, insurance, property management, and manufacturing. The attackers exploit an open redirection vulnerability on Indeed.com and use phishing emails with deceitful links. Menlo Labs recommends user education, phishing-resistant MFA, URL verification, and real-time protection against zero-hour phishing attacks. Hashtags: #EvilProxy #PhishingAttack #Indeed #Executives #Cybersecurity.

https://www.infosecurity-magazine.com/news/evilproxy-phishing-attack-strikes/