The company says the hackers used a phishing lure targeting Reddit employees with a landing page impersonating its intranet site. This site attempted to steal employees' credentials and two-factor authentication tokens.
Holy shit that still works? Was doing that shit in like 2000, to get msn, and AOL accounts.
You wouldn't believe the absolute scammy moronic bullshit that users will click on. Even after getting emails formatted the same way like 50 times and being told they're spam they STILL CLICK ON THE FUCKING LINKS like the mongoloids that they are.
You know what's annoying? When the company sends out fake spoofing emails to employees and fails to install the fake spoofing emails report button. honestly after reporting a number of them it would be great if they would remove the employee from the "annoy" list.
The company says the hackers used a phishing lure targeting Reddit employees with a landing page impersonating its intranet site.
In order to mimic the landing page of the Reddit intranet site, someone would have to know what it currently looks like. That means it was either an inside job or they had already breached Reddit enough to discover and pull up the intranet site in order to copy its look. It could have been a former employee/contractor, but depending on how far back they worked there, the intranet might have gone through a redesign. No matter what, Reddit employees are stupid and the company's security is lax. Glad it happened to them.
(post is archived)