Details Tied to Safari Browser-based ‘ScamClub’ Campaign Revealed

Public disclosure of a privilege escalation attack details how a cybergang bypassed browser iframe sandboxing with malicious PostMessage popups.