THREATNOIR
Subscribe
Back to Feed
Threat IntelligenceJun 8, 2026

We detected a #Browser-in-the-Browser phishing campaign using a draggable, OS/browser-fingerprint...

Browser-in-the-Browser phishing campaign uses draggable popups and spoofed OAuth URLs.

Read at source

Summary

A new Browser-in-the-Browser phishing campaign has been detected, employing a sophisticated technique involving draggable popups. These popups are designed to mimic legitimate browser windows and are further enhanced with OS and browser fingerprinting. The campaign also spoofs OAuth URLs to trick users into divulging credentials, evading detection by blocking debugging and fragmenting keywords.

Indicators of Compromise

  • url — https://t.co/EbWNF7JDTp
  • url — https://t.co/BVBjucAsxG

Entities

OAuth (technology)