> TritonInfoSec News
Home / Mar 03, 2026 / Story
0
#8 BleepingComputer general March 02, 2026 at 20:23 UTC

Fake Google Security site uses PWA app to steal credentials, MFA codes

By Ionut Ilascu

AI Summary

A phishing campaign uses fake Google Account security pages to deploy Progressive Web Apps (PWAs) that steal one-time passcodes, harvest cryptocurrency wallet addresses, and proxy attacker traffic through victims' browsers. The attack abuses PWA technology to create persistent access while appearing as legitimate Google security applications.

Read full article → https://www.bleepingcomputer.com/news/security/fak…

Relevance score: 79.0/100

# More from March 03

  1. 1
    Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities CyberScoop
  2. 2
    CyberStrikeAI tool adopted by hackers for AI-powered attacks BleepingComputer
  3. 3
    30 Alleged Members of 'The Com' Arrested in Project Compass Dark Reading
  4. 4
    APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday The Hacker News
  5. 5
    Cyber Command disrupted Iranian comms, sensors, top general says
  6. 6
    New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel The Hacker News
  7. 7
    North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT The Hacker News
  8. 9
    University of Hawaiʻi Cancer Center confirms data leak following ransomware attack
  9. 10
    US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates SecurityWeek