Fake SSO Used In Multi-Email Provider Phishing

Fake SSO Used In Multi-Email Provider PhishingSingle sign-on (SSO) allows users to sign into a single account (e.g Google) and access other services like YouTube or Gmail without authenticating with a separate username and password.

This feature also extends to third party services such as the popular Dropbox file sharing application, which offers users the option to access their account using Google’s authentication from their sign in page.

Malicious Pages Mimic Popular Login Workflows

SSO is very convenient for most users.

Continue reading Fake SSO Used In Multi-Email Provider Phishing at Sucuri Blog.

Source: Scuri check