ZDNet

Yahoo helps scammers phish by ignoring open redirect vulnerability

Student security researcher Robert Kugler has found his warnings over security vulnerabilities ignored once again, after reporting an open redirect vulnerability to Yahoo. Kugler found that Yahoo has ...
Threat Post

Open Redirect Flaw Snags Amex, Snapchat User Data

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims. Attackers are exploiting a well-known open redirect flaw to phish people’s ...
SiliconANGLE

Open redirect vulnerabilities exploited in ‘cat-phishing’ attacks, HP warns

A new report released today by HP Inc. is warning that cybercriminals are using “cat-phishing” techniques to deceive victims by redirecting them to malicious websites through seemingly legitimate ...
CSOonline

Open redirect on Yahoo

yahoo open redirect vulnerability and reported it to yahoo 10 days ago. However, yahoo did nothing about it. The following is full disclosure. Attachment is prove of concept video. And the link below ...
Dark Reading

American Express, Snapchat Open-Redirect Vulnerabilities Exploited in Phishing Scheme

Malicious actors have been taking advantage of open-redirect vulnerabilities affecting American Express and Snapchat domains to send phishing emails targeting Google Workspace and Microsoft 365 users.
Bleeping Computer

Adobe and Google Open Redirects Abused by Phishing Campaigns

Google and Adobe open redirects are being used by phishing campaigns in order to add legitimacy to the URLs used in the spam emails. An open redirect is an URL on a web site that can be used by anyone ...