Anyone can now generate bogus Chrome browser windows thanks to a new phishing toolkit

David Artykov
Purple Team
Published in
3 min readMar 22, 2022

--

Red teamers and cybercriminals may now develop successful single sign-on phishing login forms using phony Chrome browser windows thanks to the introduction of a phishing kit. It’s typical to see options to sign in with Google, Microsoft, Apple, Twitter, or even Steam when visiting websites. For instance, the DropBox login screen, as shown below, makes it possible to connect with an Apple or Google account.

A single-sign-on (SSO) browser window will appear when you click the Login in…

--

--