When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
The as-yet-unidentified threat actor is going after peoples login credentials for Okta, researchers from Lookout found.
First, they would create landing pages for logging into places like the FCC portal, or Binance.
This is done to buy more time for the attackers.
“Many of the sites are still active and continue to phish for more credentials each hour.”
ViaBleepingComputer
