logoalt Hacker News

grinichyesterday at 11:49 PM2 repliesview on HN

I got hit with the same kind of phishing attack a couple months ago

It's pretty incredible the level of UI engineering that went into it.

Some screenshots I took: https://x.com/grinich/status/1963744947053703309

Replies

giarctoday at 2:07 AM

I'm sorry but the imagecontent-x.com url should throw red flags for anyone.

show 1 reply
everybodyknowstoday at 3:24 AM

So, in that case the browser (correctly) did not autofill? Is that a common occurrence for legit traffic from X? And no complaint about the website's identity from the browser -- the expected "lock" icon left of the URL?