PhaaS Campaign Surge
Lighthouse and Lucid PhaaS platforms fuel phishing attacks. They target 316 brands across 74 countries. For example, they hit financial and postal sectors. Over 17,500 domains are involved.
Lucid’s Capabilities
Lucid, linked to the XinXin group, sends smishing via iMessage. It uses customizable templates. Consequently, it targets specific users. This ensures high success rates.
Lighthouse offers similar tools. It supports 200+ platform templates. For instance, it mimics postal services. Subscriptions cost up to $1,588 yearly.
Both platforms restrict phishing URLs. They check user agents and proxies. Therefore, only intended victims see malicious pages. Others get fake storefronts.
Global Brand Targets
Lucid hits 164 brands in 63 countries. Lighthouse targets 204 in 50 countries. Moreover, they focus on toll and government entities. This shows wide reach.
Lucid and Lighthouse share tactics. They collaborate within the PhaaS ecosystem. For example, they use similar hosting methods. This enhances their impact.
Phishers shift from Telegram to email. Email attacks rose 25% recently. Additionally, services like EmailJS harvest credentials. This avoids detection.
Homoglyph Attacks
New domains use Japanese characters. They mimic legitimate URLs. For instance, they target crypto wallet users. Over 600 domains were found.
Fake wallet apps steal seed phrases. They impersonate trusted extensions. Therefore, attackers gain wallet control. This leads to asset theft.
Scams exploit U.S. brand identities. They trick users into crypto deposits. For example, victims act as booking agents. This generates illicit profits.
Preventing PhaaS Attacks
To stop PhaaS, verify URLs before clicking. Use advanced email filters. Additionally, real-time threat monitoring spots fakes. Cybersecurity training helps identify scams. By staying cautious, users protect data.
Sleep well, we got you covered.
