{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreib2vscapfph2hvzl4qt5722guydsrxgrbhn7vwrmsj4beivet7wwq",
    "uri": "at://did:plc:z3a345rn6njmxg2o5lxmj3en/app.bsky.feed.post/3mg43pgpm5lk2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiasczgh6yjpej2oeo23ruk2ewnzjk7bofwoc6osdahr53uspgstym"
    },
    "mimeType": "image/jpeg",
    "size": 52440
  },
  "path": "/news/security/fake-google-security-site-uses-pwa-app-to-steal-credentials-mfa-codes/",
  "publishedAt": "2026-03-02T20:23:41.000Z",
  "site": "https://www.bleepingcomputer.com",
  "tags": [
    "Security"
  ],
  "textContent": "A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time passcodes, harvesting cryptocurrency wallet addresses, and proxying attacker traffic through victims' browsers. [...]",
  "title": "Fake Google Security site uses PWA app to steal credentials, MFA codes"
}