Cybersecurity researchers have warned of ongoing phishing campaigns that abuse refresh entries in HTTP headers to…