Thisisyourmomma

@GuardioLabs @managewp You get your money by scamming the elderly! You scammed my mother- @elonmusk and @X should ban you for life

3/3 it's live-operated AiTM! Attacker gets real-time login attempts to Telegram and controls it all from their C2. They log in to the victims' accounts on their end while orchestrating a fake login flow on the victim's screen. So you get a 2FA text message and type it into your login screen? This is not a real 2FA prompt - you just sent it to the attacker! Here you can see an inside look at how it looks on the attacker's end - and we saw enough operator fingerprints to keep pulling this thread even more. So who's behind WrongPress and how many have already wrong-pressed? soon... 💪 @GoDaddy @GoogleAds

Still Google for your account login? Beware not to "WrongPress"! We found yet another Google Ads phish, this time abusing search results for ManageWP, GoDaddy's WordPress admin platform. The fake result sits right on top of the real one, and one click later you're in an AiTM (Adversary in the Middle) trap that hijacks your account 👉 more...

@GuardioSecurity You get your money by scamming the elderly! You scammed my mother- @elonmusk and @X should ban you for life

These messages usually claim you’ve won a free product and just need to “pay for shipping” In reality, the link leads to a fake UnitedHealthcare website that asks for your credit card info - and you’ll likely never receive anything while your details are put at risk

“Your Oral-B dental kit is waiting” If you recently got a message like this from "UnitedHealthcare" ,it’s a phishing scam designed to steal your crefit card information 🧵