phishingasaservice

  • Blog
    digitpatrox4 days ago
    43

    Phishing-as-a-service operation uses DNS-over-HTTPS for evasion

    A newly discovered phishing-as-a-service (PhaaS) operation that researchers call Morphing Meerkat, has been using the DNS over HTTPS (DoH) protocol to evade detection. The platform also leverages DNS email exchange (MX) records to identify victims’ email providers and to dynamically serve spoofed login pages for more than 114 brands. Morphing Meerkat has been active since at least 2020 and it was…

    Read More »
  • Blog
    digitpatroxNovember 21, 2024
    262

    Microsoft disrupts ONNX phishing-as-a-service infrastructure

    ​Microsoft has seized 240 domains used by customers of ONNX, a phishing-as-a-service (PhaaS) platform, to target companies and individuals across the United States and worldwide since at least 2017. According to Microsoft’s Digital Defense Report 2024, ONNX (previously known as Caffeine) was the top Adversary in the Middle (AitM) phishing service by volume of phishing messages during the first half…

    Read More »
Back to top button
close