> TritonInfoSec News
Home / Mar 26, 2026 / Story
0
#3 BleepingComputer general March 25, 2026 at 19:48 UTC

Bubble AI app builder abused to steal Microsoft account credentials

By Bill Toulas

AI Summary

Threat actors are abusing the no-code platform Bubble to create and host malicious web applications that steal Microsoft account credentials. This technique allows attackers to evade traditional phishing detection systems by leveraging legitimate development platforms, making malicious sites appear more trustworthy to both users and security tools.

Read full article → https://www.bleepingcomputer.com/news/security/bub…

Relevance score: 88.0/100

# More from March 26

  1. 1
    PolyShell attacks target 56% of all vulnerable Magento stores BleepingComputer
  2. 2
    New Torg Grabber infostealer malware targets 728 crypto wallets BleepingComputer
  3. 4
    Citrix urges admins to patch NetScaler flaws as soon as possible BleepingComputer
  4. 5
    GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data The Hacker News
  5. 6
    Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse The Hacker News
  6. 7
    FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns The Hacker News
  7. 8
    TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise The Hacker News
  8. 9
    Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks The Hacker News
  9. 10
    LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace The Hacker News