When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Some injections will trigger the script, while others will simply display it, the researchers explained.
The scripts goal is to display a phishing form that steals sensitive data from the visitors.
Image Credit: Pixabay
Plenty of information for a targeted spear-phishing attack, or even identity theft.
After stealing the data, ResumeLooters tried to sell it on the dark web, Group-IB added.
They offered it in two Telegram channels, using accounts with Chinese names.
Additionally, the gangs attacks cover a vast geographical area.
