Monthly Archives: December 2022

Threat Analysis: Nickel Phishing – Fake “Sponsorship” Offer Stealing Card Details This phishing campaign impersonates Nickel, a French neobank (a subsidiary of BNP Paribas). The scam uses a fake “parrainage” (referral/sponsorship) offer to lure victims into providing their personal information and full card details under the guise of participating in a rewards program. How it …

Continue reading “NiCKEL phishing page detected”

Threat Analysis: Naranja X Phishing – Fake Login Page Stealing Email and Password This phishing campaign impersonates Naranja X, a popular digital financial platform in Argentina that offers credit cards, loans, and digital accounts. The page mimics the platform’s login interface to steal customers’ email address and password. How it works:The victim receives a phishing …

Continue reading “Naranja X phishing page detected”

Threat Analysis: Daviplata Phishing – Credential & SMS Code Harvesting This phishing campaign impersonates Daviplata, a widely used digital wallet and mobile payment platform in Colombia, operated by Davivienda Bank. The scam uses a multi-page flow to capture the victim’s document number, Daviplata password, and the SMS verification code—the three elements needed to access the …

Continue reading “Daviplata phishing page detected”

Threat Analysis: Generic Banking Phishing – Credential & SMS Code Harvesting This phishing campaign impersonates a financial institution (likely a bank or digital wallet in Latin America, based on the Spanish language and the “reactivar” – reactivate – pretext). The scam uses a multi-page flow to capture the victim’s username, password, and SMS verification code …

Continue reading “Bancolombia phishing page revealed”

Then visitor will be redirected to the official website of Citizens Bank. Threat Analysis: Citizens Bank Phishing – Full Identity & Financial Data Harvesting This phishing campaign impersonates Citizens Bank, a prominent bank in the United States. The scam uses a multi-page flow to capture: This combination of data enables attackers to commit identity theft, …

Continue reading “Citizens Bank phishing page detected”

Threat Analysis: Bank of America Phishing – Email Credential & Card Data Harvesting This phishing campaign impersonates Bank of America, targeting Spanish-speaking customers. The scam uses a multi-page flow to capture: By compromising both the email account and the payment card, attackers can gain persistent access to sensitive communications and conduct unauthorized transactions. How it …

Continue reading “Bank of America pishing pages in Spanish detected”

Threat Analysis: Crédit Agricole Phishing – Multi‑Stage SécuriPass & Credential Theft This phishing campaign impersonates Crédit Agricole. The scam uses a long, multi‑page flow to capture: By harvesting both the SMS and email codes, attackers can bypass multiple security layers and gain full account access. How it works:The victim receives a phishing email claiming they …

Continue reading “Credit Agricole Bank phishing page detected”

Threat Analysis: BAC Credomatic Phishing – Fake “Banca en Línea” Login Page This phishing campaign impersonates BAC Credomatic, one of the largest banks in Central America. The page mimics the bank’s “Banca en Línea” (Online Banking) login interface to steal customers’ username and password. It also includes a “Usar Token” option, suggesting the attacker may …

Continue reading “BAC Credomatic phishing page detected”