from threatpost.com2 years agoIt's a legitimate access token, stolen from a third-party contractor, that lets the attackers send phishing emails from kaspersky.com email addresses. Read at threatpost.com[add][|| ... ]