Cybercriminals are leveraging a multi-stage phishing kit designed to impersonate Aruba S.p.A., enabling them to target over 5.4 million customers. The phishing campaign starts with spear-phishing emails creating urgency among victims, which then leads them to meticulously crafted fake login pages that mimic the Aruba portal.
The kit employs techniques such as pre-filled login URLs and CAPTCHA filtering to maximize efficiency and evade detection. Victims complete a credential harvesting process, providing not only login details but also financial information through fake payment pages. This entire operation illustrates the dangers of phishing-as-a-service, making it easier for attackers to conduct widespread credential theft.
👉 Pročitaj original: Cyber Security News
