Attackers Use Stolen Credentials from Phishing Sites to Sell Victims' Stocks

Attackers are using stolen credentials obtained through phishing sites that mimic legitimate brokerage firm homepages to sell victims' stocks before they realize they have been hacked. Victims are deceived by these fraudulent sites, allowing attackers to access their accounts and conduct unauthorized transactions. The impacts include the unauthorized sale of victims' stocks.