"'CryptoChameleon' Campaign Targets Employees of Cryptocurrencies, FCC"

"CryptoChameleon" is a phishing campaign that began by targeting cryptocurrency customers but has since changed to focus on employees at Binance, Coinbase, and the Federal Communications Commission (FCC). According to Lookout researchers, these employees are targeted and phished through fake Single Sign-On (SSO) pages mimicking the actual Okta SSO pages at the targeted organizations, allowing the attackers to steal login credentials as well as personal and enterprise data. David Richardson, Lookout's vice president of endpoint and threat intelligence, highlighted that financially motivated threat actors are shifting from consumer targeting to mainly breaching enterprise and government organizations because they believe these targets result in greater financial gain. This article continues to discuss findings regarding the CryptoChameleon phishing campaign.

SC Media reports "'CryptoChameleon' Campaign Targets Employees of Cryptocurrencies, FCC"

Submitted by grigby1