A recent discovery: A new, advanced phishing platform as a service

A recent discovery: A new, advanced phishing platform as a service

According to researchers at Netcraft, a new phishing-as-a-service platform called darcula has been discovered. This platform, operating on over 20,000 phishing domains, provides cybercriminals with access to phishing templates and simplifies the deployment of phishing sites.

Unlike other similar platforms, darcula has the ability to update in place, allowing for the incorporation of new features and anti-detection measures. For example, researchers noted an update where the kit was modified to conceal the attack’s location.

Research findings revealed that darcula infrastructure domains were present on 11,000 IP addresses spread across more than 100 countries. Since the start of 2024, an average of 120 domains have hosted phishing pages daily. The phishing attacks have specifically targeted USPS, DHL, Evri, as well as postal services in Bulgaria, Australia, and Singapore. Darcula focuses on industries that rely on consumer trust, such as postal services, financial institutions, government agencies, and telecommunications firms.

Post Your Comment

Subscribe Our Newsletter

We hate spam, we obviously will not spam you!

Services
  • Security Analysis
  • Penetration Testing
  • Thread Detection
  • 360 Protection
Use Cases
  • Website Security
  • AppSec
  • Case Studies
  • Integrations
Opportunities
  • Partnerships
  • Software Suite
  • Careers
Resources
Support
  • Support
  • Contact Us
  • About Us
  • Partnerships
Get in Touch
Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC

Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC