Threat Analysis: Bank of America Phishing â Email Credential & Card Data Harvesting This phishing campaign impersonates Bank of America, targeting Spanish-speaking customers. The scam uses a multi-page flow to capture: By compromising both the email account and the payment card, attackers can gain persistent access to sensitive communications and conduct unauthorized transactions. How it …
Continue reading “Bank of America pishing pages in Spanish detected”
Threat Analysis: Massachusetts Unemployment Insurance Phishing â SSN & Account Takeover Scam This phishing campaign impersonates the Massachusetts Unemployment Insurance (UI) Online Application portal, used by the stateâs Department of Unemployment Assistance (DUA). The scam targets unemployment claimants, aiming to steal their Social Security Number (SSN), password, and email verification codeâthe credentials needed to access …
Continue reading “Massachusetts Unemployment Insurance phishing page detected”
Threat Analysis: CrĂ©dit Agricole Phishing â MultiâStage SĂ©curiPass & Credential Theft This phishing campaign impersonates CrĂ©dit Agricole. The scam uses a long, multiâpage flow to capture: By harvesting both the SMS and email codes, attackers can bypass multiple security layers and gain full account access. How it works:The victim receives a phishing email claiming they …
Continue reading “Credit Agricole Bank phishing page detected”
Threat Analysis: BAC Credomatic Phishing â Fake âBanca en LĂneaâ Login Page This phishing campaign impersonates BAC Credomatic, one of the largest banks in Central America. The page mimics the bankâs âBanca en LĂneaâ (Online Banking) login interface to steal customersâ username and password. It also includes a âUsar Tokenâ option, suggesting the attacker may …
Thank you for sharing these three screenshots. They show a multi-step phishing campaign impersonating Banreservas (Banco de Reservas de la RepĂșblica Dominicana) , the largest bank in the Dominican Republic. The scam is designed to capture the victimâs online banking username, password, and then their email credentials along with the numeric code from their âtarjeta …
Threat Analysis: Bam (Banco AgrĂcola) Phishing â Username Harvesting (First Stage) This phishing campaign targets customers of Bam â Banco AgrĂcola, a major bank in Central America (particularly El Salvador). The page mimics the bankâs âBamvirtual Personasâ login interface. It only asks for a username at this stage, but the captured username will be used …
Continue reading “Banco Agromercantil phishing pages detected”
Then user will be redirected to the true Vapes.bg website: These three screenshots show a Google account phishing attack combined with a postâphishing redirection to a Bulgarian vape shop page. The attacker uses a fake Google signâin flow to steal the victimâs email and password, then redirects to a legitimateâlooking online store to reduce suspicion. …
Continue reading “Google phishing page with fake BG Vapes authorization detected”
These four screenshots show a multiâstep phishing campaign targeting French users, likely impersonating a payment service or online marketplace. The scam uses a fake âpending paymentâ lure to harvest the victimâs login credentials, full personal details, and credit card information. Threat Analysis: Fake Payment Pending Phishing â Credential, Personal & Card Data Harvesting This phishing …
These two screenshots show a phishing campaign impersonating Nets, a major Danish payment service provider. The scam uses a fake ârefundâ pretext to trick victims into providing their email address, full name, phone number, and full credit/debit card details. Threat Analysis: Nets Refund Phishing â Card & Personal Data Harvesting This phishing campaign impersonates Nets, …
These four screenshots show a multiâstep Netflix phishing campaign designed to harvest full payment card details, personal information, and the SMS verification code (twoâfactor authentication) needed to authorize fraudulent charges or take over an account. Threat Analysis: Netflix Phishing â Complete Card & 2FA Code Harvesting This phishing campaign impersonates Netflixâs subscription signâup process. The …
