Fake Google Security site uses PWA app to steal credentials, MFA codes

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time ...

This fake Google Security check can steal your passwords. Here’s how to stay safe

A new phishing campaign is impersonating Google’s account security checks to trick users into installing a malicious web app that steals passwords, passcodes, and other sensitive data directly from ...

This new phishing campaign uses a fake Google Account security page to steal passcodes and more

Hackers don't need an app to steal login credentials anymore - a PWA will do.
Windows Report

New Google-Themed Phishing Attack Turns Browser Features Into Spyware

A fake Google security site installs a malicious PWA that steals OTPs, crypto wallets, and location data. Here’s how the ...