In early March 2026, we uncovered #EvilTokens, a new #PhaaS offering device code phishing pages and AI-driven features to automate and scale BEC workflows.
Part 1 of our analysis provides a technical analysis of the EvilTokens kit ⬇️
blog.sekoia.io/new-widespre...
~Sekoia~
EvilTokens is a new PhaaS kit automating Microsoft device code phishing to bypass MFA and execute BEC attacks.
-
IOCs: authdocspro. com, backdoor-hub. com, bumpgames. net
-
#EvilTokens #PhaaS #Phishing #threatintel
How phishing service Tycoon 2FA went under Microsoft, together with Europol and international partners, has disrupted the phishing-as-a-service provider Tycoon 2FA. The service sent tens of million...
#Security #cybersecurity #Digital #Crimes #Unit #europol #MFA […]
[Original post on techzine.eu]
Sneaky2FA: il phishing che ruba credenziali con attacchi browser-in-the-browser
📌 Link all'articolo : www.redhotcyber.com/post/sne...
#redhotcyber #news #sneaky2fa #phaas #browserinthebrowser #cybersecurity #hacking #phishing
Sneaky2FA usa tecniche BITB per evadere 2FA e rubare sessioni, con evoluzioni PhaaS che aumentano stealth e sofisticazione.
#2FA #BITB #PhaaS #phishingasaservice #PushSecurity #Sneaky2FA
www.matricedigitale.it/2025/11/20/s...
iT4iNT SERVER Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform VDS VPS Cloud #Google #CyberSecurity #Phishing #Hackers #PhaaS
winbuzzer.com/2025/11/12/m...
Microsoft 365 Users Face New Automated Phishing Threat
#Cybersecurity #Phishing #Microsoft365 #InfoSec #CyberAttack #ThreatIntel #PhaaS #Microsoft #EmailSecurity #Cybercrime #DataSecurity #KnowBe4 #Hacking
Cybersecurity alert: Over 17,500 phishing domains linked to PhaaS platforms like Lucid and Lighthouse are targeting 316 brands across 74 countries. Stay vigilant! #CyberSecurity #Phishing #PhaaS Link: thedailytechfeed.com/global-surge...
🚨 New #PhaaS: Salty 2FA linked to Storm-1575 is bypassing Microsoft 365 2FA & hitting global industries.
See advanced TTPs, evasion, and IOCs.
Full analysis & defender EDL: www.cyberintelligence.dev/salty-2fa-un...
#Cybersecurity #ThreatIntel
🚨 New Phishing-as-a-Service Threat! 🚨
VoidProxy Targets Microsoft 365 & Google Workspace Users.
#VoidProxy #CyberSecurity #Phishing #Microsoft365 #GoogleWorkspace #CloudSecurity #PhaaS #BEC #Technijian #ITSecurity #DarkWeb #DataBreach
~Anyrun~
New PhaaS 'Salty 2FA' targets US/EU orgs, bypassing Microsoft 365 MFA with a multi-stage, evasive attack chain.
-
IOCs: marketplace24ei. ru, nexttradeitaly. it. com, frankfurtwebs. com. de
-
#PhaaS #Phishing #Salty2FA #ThreatIntel
~Sekoia~
Report details the surge in Adversary-in-the-Middle (AitM) Phishing-as-a-Service, ranking Tycoon 2FA, Storm-1167, and NakedPages as top threats.
-
IOCs: Tycoon 2FA, Storm-1167, NakedPages
-
#AitM #PhaaS #ThreatIntel
Phishing-as-a-Service is revolutionizing cybercrime, enabling even novices to launch sophisticated attacks. Organizations must enhance defenses to combat this growing threat. #CyberSecurity #Phishing #PhaaS Link: thedailytechfeed.com/phishing-as-...
"More wannabe cybercriminals are turning to user-friendly online tool kits designed to help them steal login credentials, passwords, credit card numbers and other sensitive data."
www.wsj.com/articles/do-... #cybersecurity #crime #phishing #PhaaS
🛡️ #Phishing is evolving - and so is the criminal toolkit behind it.
New #PhaaS platforms like Tycoon 2FA make it easier to bypass MFA & target entire supply chains.
Know the risks. Build resilience.
#RetailSecurity #CyberSecurity #RHISAC #ThreatIntel #CyberResilience
🚨 42,000 phishing domains shut down!
FBI takes down LabHost, a PhaaS platform used by 10K+ cybercriminals.
🔗 Blog: technijian.com/cyber-securi...
🎧 Podcast: technijian.com/podcast/fbi-...
#CyberSecurity #FBI #Phishing #LabHost #PhaaS #SIEM #Technijian #CyberCrime
偽ログイン画面をユーザーに合わせて変更、新手のフィッシング詐欺の脅威を認識せよ #NikkeiXtech (Apr 16)
#フィッシング詐欺 #PhaaS #メールセキュリティ #BEC対策 #MorphingMeerkat
PhaaS boosts phishing tool access. Tycoon2FA bypasses MFA w/ code tricks & CAPTCHAs, joining a rising trend of malicious SVG attacks. #PhaaS #Cybercrime #TechTrends
www.bleepingcomputer.com/news/securit...
Tycoon2FAフィッシングキットが大幅にアップデート
Tycoon2FA phishing kit rolled out significant updates #SecurityAffairs (Apr 14)
#Tycoon2FA #フィッシングキット #PhaaS #検出回避 #サイバーセキュリティ
The Lucid Phishing-as-a-Service (PhAAS) platform, developed by the XinXin group, facilitates large-scale phishing campaigns targeting global organizations, including postal and courier services.
catalyst.prodaft.com/public/repor...
#PhAAS #imessage #apple #rcs
新たなサイバー脅威『Morphing Meerkat』がもたらすフィッシングの危機 #東京都 #港区 #フィッシング #Cybersecurity #PhaaS
高度化するフィッシング攻撃『Morphing Meerkat』が企業に及ぼす影響と対策について解説。サイバー犯罪者の新手法から身を守るために必要な対策を考察します。
Lucid PhaaS Hits 169 Targets in 88 Countries Using iMessage and RCS Smishing reconbee.com/lucid-phaas-...
#Lucid #PhaaS #imessage #RCSsmishing #cyberattack #CyberSecurity #CybersecurityAttack #CyberSec
A phishing-as-a-service #PhaaS platform named 'Lucid' has been targeting 169 entities in 88 countries using well-crafted messages sent on iMessage (iOS) and RCS (Android)☝️☠️ #hacking
buff.ly/DqmJ8x1
モーフィング Meerkat PhaaS プラットフォームが 100 以上のブランドになりすます
Morphing Meerkat PhaaS Platform Spoofs 100+ Brands #InfosecurityMagazine (Mar 28)
#MorphingMeerkat #フィッシング #PhaaS #DNS攻撃 #サイバーセキュリティ
フィッシング・アズ・ア・サービスでは、DNS-over-HTTPS を利用して回避している
Phishing-as-a-service operation uses DNS-over-HTTPS for evasion #BleepingComputer (Mar 28)
#MorphingMeerkat #フィッシング #DNSoverHTTPS #サイバーセキュリティ #PhaaS
Phishing-as-a-service is an area that is increasing rapidly according to research by security vendor Barracuda Networks, which says it has detected a “massive spike” in PhaaS attacks in the first two months of this year […]
'Phishing as a Service' (PhaaS) Darcula v3 can auto-generate phishing kits for any brand.
www.bleepingcomputer.com/news/securit...
#Phishing #PhaaS #Darcula
Darculaは、技術に疎い犯罪者があらゆるブランドを狙ったDIYフィッシングキットを作成し、展開することを可能にする
Darcula allows tech-illiterate crooks to create, deploy DIY phishing kits targeting any brand #HelpNetSecurity (Feb 20)
#Darcula #フィッシング #PhaaS #サイバー犯罪 #デジタルウォレット
