Techly NewsGet the app

Get the latest tech news

Researchers unearth keyloggers on Outlook login pages


Unknown threat actors have injected organizations' Outlook on the Web (OWA) login page with browser-based keyloggers.

A JavaScript keylogger that grabs the login credentials (and occasionally user cookies) from the authentication form and essentially writes the data to a file on the compromised server which is accessible from the internet, or A JavaScript keylogger that exfiltrates the data to a Telegram bot or Discord server, and marks it so that the attackers will known to which organization the stolen credentials belong to. Servers affected by these attackers have been found in Vietnam, Russia, Taiwan, China, Australian, and other countries in Asia, Europe, Africa, and the Middle East. Subscribe to our breaking news e-mail alert to never miss out on the latest breaches, vulnerabilities and cybersecurity threats.

Get the Android app

Or read this on r/technology

Read more on:

Photo of researchers

researchers

Photo of Outlook

Outlook

Photo of Outlook login pages

Outlook login pages

Related news:

News photo

Using AI makes you stupid, researchers find. Study reveals chatbots risk hampering development of critical thinking, memory and language skills

News photo

China’s Spy Agencies Are Investing Heavily in A.I., Researchers Say

News photo

That 'Unsubscribe' Button Could Be a Trap, Researchers Warn

« Cyborg embryos' tiny implants reveal developmental brain activity in frogs and lizards
PSP 2 specs leak points to a powerful PlayStation handheld from Sony »