Google’s Threat Analysis Group (TAG) has blocked dozens of malicious domains and websites used by hack-for-hire groups in attacks targeting users worldwide.
The company has published a blog post aimed to warn users about the threat. These domain links appear as fake login pages for websites or apps and inject spying tools into users PCs/laptops.
As a result, when you type in your password, the login credentials are secretly sent to the hacker, allowing them to break into your system and take complete control.
These phishing messages have ranged from targeting specific government organisations to AWS accounts to Gmail accounts.
To help users Google has provided examples of the hack-for-hire ecosystem from India, Russia, and the United Arab Emirates (UAE). Here’s the list of India-linked domains.