A security bug discovered in November, but that has yet to be fixed within Google’s new internet standard Accelerated Mobile Pages (AMP) is being leveraged by hackers to launch phishing attacks against some Gmail Users. Chris Olson, CEO at The Media Trust commented below.
Chris Olson, CEO at The Media Trust:
“Phishing is a growing concern in the digital environment with the AMP flaw just one vector among many. The past 12 months have seen a doubling in web-based phishing content where users are presented with an incentive to elicit personal data. These “You’ve won! Fill out this survey to get your prize” scenarios execute via compromised third-party web content, i.e., advertising, marketing landing pages, etc. And, it happens more often that enterprise IT/security teams realize. The only solution is to rein in the activities of third-party vendors used in the development of apps or execution of final, consumer-facing content.”
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
