Details Tied to Safari Browser-based ‘ScamClub’ Campaign Revealed

Source: Threat Post
Details Tied to Safari Browser-based ‘ScamClub’ Campaign Revealed
Public disclosure of a privilege escalation attack details how a cybergang bypassed browser iframe sandboxing with malicious PostMessage popups.