Attackers Used Legitimate SurveyMonkey Domain to Bypass Security Filters

From cyware.com

Attackers Used Legitimate SurveyMonkey Domain to Bypass Security Filters

Hackers have been abusing legitimate survey forms to host credential harvesting sites on online platforms without the need for any external tool or phishing site, which is often termed as Living Off the Land (LOtL) attacks. Recently, phishers used the surveying site SurveyMonkey to host redirect links to a phishing webpage.

Read more…