An unnamed Democratic source told CNN Wednesday that the DNC was alerted to the presence of a spoofed log-in page designed to mimic VoteBuilder – a platform used by Democratic Party officials and campaigns across the country to manage the Democratic registered voter database. The alarm was raised by security researchers at Lookout and a cloud provider, the source said, adding that the page was a very close facsimile of the service’s legitimate access page.
DNC officials and Lookout believed the site was a malicious one, designed to trick users into filling in their authentication details, which would arm the attackers with an open door into the database. Bad actors could have lured users to spoofed sites using targeted spear-phishing emails.
Read more…
Source: ThreatPost