This set of screenshots shows a phishing campaign impersonating Poshmark, a popular online marketplace for secondâhand goods. The scam uses a fake âaccount restrictedâ notification and a fake support chat to pressure victims into providing full credit/debit card details, personal information, and contact details. Threat Analysis: How the scam works (multiâstep flow): Fake Order Summary …
Continue reading “Poshmark Phishing â Fake Account Restriction & Card Harvesting”
This phishing campaign impersonates dao, a Danish parcel delivery service. The scam uses a fake âdelivery failedâ notification to trick victims into providing personal information, which can later be used for identity theft or to redirect victims to a payment page where credit card details are stolen. How it works: Fake Tracking Page â The …
đĄď¸ Phishing Alert: The “Agency Complaint Matrix” Trap## Target: Customers and Employees of French Banking Groups (CrĂŠdit Agricole) Our AI-engine, Miniban, has detected a highly sophisticated spear-phishing campaign hosted on GitHub Pages. This attack mimics internal banking tools to bypass standard security filters and steal sensitive financial data. 1. The “Trusted Host” Camouflage Scammers are …
Continue reading “GitHub Pages Abused for French Banking Fraud”
Below is a description of the Norwegian BankID phishing campaign shown in the screenshots. The attack attempts to harvest multiple layers of authentication data. Threat Analysis: BankID Phishing â Full Credential & 2FA Harvesting (Norwegian Variant) This multiâstep phishing campaign impersonates BankID, the common Norwegian electronic identification system used by most banks. The attackerâs goal …
Below is a description of this phishing campaign targeting Posti (the Finnish postal service) and using a fake bank authentication page to steal avainluku (key number) credentials. Threat Analysis: Posti Phishing â Fake âKey Numberâ Authentication Scam (Finnish Bank Credential Theft) This phishing campaign impersonates Posti, the Finnish postal service. The scam uses a fake …
Continue reading “Posti Phishing â Fake âKey Numberâ Authentication Scam”
Threat Analysis: Matkahuolto Phishing â Fake Payment Release Scam (Finnish Variant) This phishing campaign impersonates Matkahuolto, a well-known Finnish logistics and transport company. The scam targets sellers on classified or marketplace platforms, creating a fake payment confirmation process. The victim is led to believe that a buyer has already paid for an item, and the …
Continue reading “Matkahuolto Phishing â Fake Payment Release Scam detected”
Below is an analysis of the phishing campaign based on the three screenshots. The attack impersonates Bank Negara Malaysia (the central bank) and then Google, using a fake login flow to steal credentials for both. Threat Analysis: MultiâStep Phishing â Bank Negara Malaysia & Google Credential Harvesting This campaign targets users in Malaysia and Indonesia …
Continue reading “Bank Negara Malaysia & Google Credential Harvesting revealed”
đĄď¸ Phishing Alert: The “Fake Buyer” Marketplace Scam This screenshot demonstrates a common and dangerous phishing tactic used on classifieds and marketplace platforms (like Carousell, Olx, or Avito). Here is a breakdown of how this scam works to steal your banking information: 1. The Domain Deception Look closely at the URL: carousell.83774920.sale/âŚ. 2. The Emotional …
These screenshots show a phishing campaign impersonating Pinkoi (a popular eâcommerce platform for designers and handmade goods) and an associated seller named âAmberlithuaniaâ. The scam uses a fake account suspension notice to trick victims into providing full bank card details and personal information. Threat Analysis: Pinkoi Seller Phishing â Fake âAccount Suspendedâ / Card Verification …
A phishing campaign targeting easybank (a German direct bank), based on the two screenshots. Threat Analysis: easybank Phishing â Fake Online Banking Login with Fake Waiting Page This phishing campaign impersonates easybank, a German online bank. The attack is designed to steal the victimâs online banking credentials (username and password) and then use a fake …
