Web Scouter
Back to News
Security NewsHighIncidentphishing

Fake Google Security site uses PWA app to steal credentials, MFA codes

UnknownMar 2, 2026(19 days ago)

A phishing campaign uses a fake Google security page to steal credentials, MFA codes, and cryptocurrency wallet addresses.

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time passcodes, harvesting cryptocurrency wallet addresses, and proxying attacker traffic through victims' browsers. [...]

Potentially Affected Vendors
Google Cloud Platform

Vendors are matched automatically based on AI analysis. Verify with official sources.

Related News

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

Unknownabout 7 hours ago

Google adds ‘Advanced Flow’ for safe APK sideloading on Android

Unknownabout 10 hours ago

Microsoft Azure Monitor alerts abused in callback phishing campaigns

Unknownabout 10 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.