Threat Post

Open Redirect Flaw Snags Amex, Snapchat User Data

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims. Attackers are exploiting a well-known open redirect flaw to phish people’s ...
Bleeping Computer

Adobe and Google Open Redirects Abused by Phishing Campaigns

Google and Adobe open redirects are being used by phishing campaigns in order to add legitimacy to the URLs used in the spam emails. An open redirect is an URL on a web site that can be used by anyone ...
Bleeping Computer

Fake OnlyFans dating sites abuse UK Environment Agency open redirect

Threat actors abused an open redirect on the official website of the United Kingdom's Department for Environment, Food & Rural Affairs (DEFRA) to direct visitors to fake OnlyFans adult dating sites.
Ars Technica

URL redirects open scareware loophole at major sites

URL redirect notifications are often meant to serve as security measures, but at least one malware blackhat is exploiting these services and redirecting site visitors from the website they think they ...