home.social

#cryptochameleon — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cryptochameleon, aggregated by home.social.

  1. 🚨 CryptoChameleon Returns — Using “Fake Death” Phishing to Target LastPass Users
    A sophisticated campaign is spoofing LastPass’s inheritance process, claiming a family member uploaded a death certificate to access a user’s vault.
    The phishing link leads to lastpassrecovery[.]com, stealing master passwords and passkeys. Attackers even followed up with voice calls pretending to be support staff.
    This evolution into passkey-targeting phishing underscores a major shift in credential theft tactics.
    💭 Should password managers tighten inheritance verification or rethink passkey syncing entirely?

    Follow @technadu for deep, verified threat intelligence and infosec updates.

    #InfoSec #CyberSecurity #LastPass #CryptoChameleon #Phishing #Passkeys #ThreatIntel #PasswordManager #DataBreach #DigitalSecurity #SecurityAwareness

  2. 🚨 CryptoChameleon Returns — Using “Fake Death” Phishing to Target LastPass Users
    A sophisticated campaign is spoofing LastPass’s inheritance process, claiming a family member uploaded a death certificate to access a user’s vault.
    The phishing link leads to lastpassrecovery[.]com, stealing master passwords and passkeys. Attackers even followed up with voice calls pretending to be support staff.
    This evolution into passkey-targeting phishing underscores a major shift in credential theft tactics.
    💭 Should password managers tighten inheritance verification or rethink passkey syncing entirely?

    Follow @technadu for deep, verified threat intelligence and infosec updates.

    #InfoSec #CyberSecurity #LastPass #CryptoChameleon #Phishing #Passkeys #ThreatIntel #PasswordManager #DataBreach #DigitalSecurity #SecurityAwareness

  3. 🚨 CryptoChameleon Returns — Using “Fake Death” Phishing to Target LastPass Users
    A sophisticated campaign is spoofing LastPass’s inheritance process, claiming a family member uploaded a death certificate to access a user’s vault.
    The phishing link leads to lastpassrecovery[.]com, stealing master passwords and passkeys. Attackers even followed up with voice calls pretending to be support staff.
    This evolution into passkey-targeting phishing underscores a major shift in credential theft tactics.
    💭 Should password managers tighten inheritance verification or rethink passkey syncing entirely?

    Follow @technadu for deep, verified threat intelligence and infosec updates.

    #InfoSec #CyberSecurity #LastPass #CryptoChameleon #Phishing #Passkeys #ThreatIntel #PasswordManager #DataBreach #DigitalSecurity #SecurityAwareness

  4. LastPass warns of a CryptoChameleon phishing campaign spoofing LastPass. The CryptoChameleon is a Phishing-as-a-Service (PhaaS) that allows threat actors to easily create fake SSO or other login sites drawn from fraudulent branding. LastPass had the phishing site taken down and describes the phishing tactics used in this campaign. 🔗blog.lastpass.com/posts/2024/0

    #CryptoChameleon #PhaaS #phishing #threatintel

  5. LastPass warns of a CryptoChameleon phishing campaign spoofing LastPass. The CryptoChameleon is a Phishing-as-a-Service (PhaaS) that allows threat actors to easily create fake SSO or other login sites drawn from fraudulent branding. LastPass had the phishing site taken down and describes the phishing tactics used in this campaign. 🔗blog.lastpass.com/posts/2024/0

    #CryptoChameleon #PhaaS #phishing #threatintel

  6. LastPass warns of a CryptoChameleon phishing campaign spoofing LastPass. The CryptoChameleon is a Phishing-as-a-Service (PhaaS) that allows threat actors to easily create fake SSO or other login sites drawn from fraudulent branding. LastPass had the phishing site taken down and describes the phishing tactics used in this campaign. 🔗blog.lastpass.com/posts/2024/0

    #CryptoChameleon #PhaaS #phishing #threatintel

  7. LastPass warns of a CryptoChameleon phishing campaign spoofing LastPass. The CryptoChameleon is a Phishing-as-a-Service (PhaaS) that allows threat actors to easily create fake SSO or other login sites drawn from fraudulent branding. LastPass had the phishing site taken down and describes the phishing tactics used in this campaign. 🔗blog.lastpass.com/posts/2024/0

    #CryptoChameleon #PhaaS #phishing #threatintel

  8. LastPass warns of a CryptoChameleon phishing campaign spoofing LastPass. The CryptoChameleon is a Phishing-as-a-Service (PhaaS) that allows threat actors to easily create fake SSO or other login sites drawn from fraudulent branding. LastPass had the phishing site taken down and describes the phishing tactics used in this campaign. 🔗blog.lastpass.com/posts/2024/0

    #CryptoChameleon #PhaaS #phishing #threatintel