The Smishing Triad operation, which has been linked to approximately 195,000 domains, is primarily executed in Chinese and has an extensive infrastructure involving various malicious actors. Businesses across crucial sectors are impersonated, deceiving victims into believing they are accessing legitimate online services. Recent findings reveal that the U.S. Postal Service is among the most impersonated services, with over 28,000 domains registered under this campaign, marking a significant threat to sensitive information security.
Researchers have seen an increase in domain activity towards impersonating government entities, reflecting a worrying trend in phishing tactics. With less than 30% of domains active for over two days, the operation employs a fast-paced turnover in domain registration to avoid detection and enhance its efficacy in stealing sensitive data. Although exact victim numbers remain unclear, the operation’s scope and infrastructure signify a growing challenge in cybersecurity, highlighting the need for advanced protective measures against such decentralized and intricate phishing campaigns.
👉 Pročitaj original: CyberScoop
