Techly NewsGet the app

Get the latest tech news

Progressive Web Apps (PWAs) Phishing


Security Research | C:\Users\mr.d0x>

The demo below performs the previously mentioned steps but instead redirects users to a fake Microsoft phishing page that captures credentials. However, I believe people’s habits of checking the URL bar will lead them to disregard that domain name (security awareness is required for this). It may also be worth mentioning that prior to posting this blog I did find someone raising a security concern regarding the abuse of PWA for phishing back in 2018.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of progressive web apps

progressive web apps

Photo of PWAs

PWAs

Related news:

News photo

New phishing toolkit uses PWAs to steal login credentials

News photo

EU initiates investigation into Apple’s restriction on progressive web apps

« United Group Owner Seeks July Bids as PE Firms Join Fray
Designing a website without 404s »