Hackers target unsecured Amex and Snapchat sites to steal user data

Why it matters: An email-focused security firm released a blog post detailing a phishing attack targeting unsecured American Express and Snapchat sites. The identified exploit uses a known open redirect vulnerability that allows threat actors to specify a redirect URL, driving traffic to fraudulent sites designed to steal user information. Maryland-based security firm Inky Security

Read more