{"id":"2048822063557726479","url":"https://x.com/k1rallik/status/2048822063557726479","text":"do you understand what just happened to Robinhood..\n\nSomeone sent a perfect phishing email - real domain, DKIM pass, SPF pass, DMARC pass and Robinhood's own servers delivered it.\n\nHere's the chain:\n\n→ Gmail treats john.doe@ and johndoe@ as the same inbox\n→ Attacker registers a NEW Robinhood account using the dot trick of YOUR email\n→ Sets the device name to raw HTML code\n→ Robinhood's \"unrecognized activity\" email renders it unsanitized\n\nThe \"Review Activity Now\" button? Attacker's phishing site.\n\nThe email? 100% real.. Sent by Robinhood.. Signed by Robinhood..\n\nJust because it passed every security check doesn't mean it's safe.","author":{"name":"BuBBliK","username":"k1rallik","avatarUrl":"https://pbs.twimg.com/profile_images/1957215896788717568/DleHEDIC_200x200.jpg"},"createdAt":"Mon Apr 27 17:50:19 +0000 2026","engagement":{"replies":171,"retweets":662,"likes":6596,"views":2302958},"media":{"photos":[],"videos":[{"url":"https://video.twimg.com/amplify_video/2048821889435414528/vid/avc1/960x720/0GWQPakRfU999oEw.mp4?tag=21","thumbnailUrl":"https://pbs.twimg.com/amplify_video_thumb/2048821889435414528/img/7ETNOon-cSHGTQsJ.jpg","width":960,"height":720,"duration":11.215}]},"quoteTweet":{"id":"2048606874854097242","url":"https://x.com/rockkdev/status/2048606874854097242","text":"New Robinhood phishing chain that's kinda beautiful:\n\n1. Attacker creates an RH account using the Gmail dot trick of your email (same inbox, different address)\n2. Sets device name to HTML\n3. RH's \"unrecognized activity\" email renders the device name unsanitized (html injection)\n\nThe result is a real email from noreply@robinhood.com, DKIM pass, SPF pass, DMARC pass, with a phishing CTA\n\nJust because it's real, doesn't mean it's safe... $HOOD","author":{"name":"Abdel","username":"rockkdev","avatarUrl":"https://pbs.twimg.com/profile_images/2047798132512276480/lbyDbhu6_200x200.jpg"},"createdAt":"Mon Apr 27 03:35:14 +0000 2026"},"adhxContext":{"savedByCount":1,"publicTags":[],"previewUrl":"https://adhx.com/k1rallik/status/2048822063557726479"}}