FlowerStorm: The New Thorn in Microsoft’s Side or Just Rockstar2FA in Disguise?
FlowerStorm, a new phishing-as-a-service platform, is rapidly gaining popularity after Rockstar2FA’s collapse. Sharing uncanny similarities with its predecessor, FlowerStorm raises suspicions of a rebrand. While users face increased phishing risks, the platform’s botanical theme adds a strange touch of nature to cybercrime. Protect yourself!
Hot Take:
Move over, Rockstar2FA! There’s a new kid on the phishing block, and it’s got a floral motif. Introducing FlowerStorm, the cybercriminal service that’s proving phishing-as-a-service is the hottest trend since sliced malware. With the same bouquet of tricks and traps as its predecessor, FlowerStorm is blooming in the cyber underworld. Let’s just hope it doesn’t get pruned too soon!
Key Points:
- FlowerStorm is a new phishing-as-a-service (PhaaS) platform targeting Microsoft 365 credentials.
- It shares many similarities with the now-defunct Rockstar2FA, suggesting a possible rebrand.
- FlowerStorm uses phishing portals and backend servers on domains like .ru and .com.
- Key targets are in the US, affecting sectors like services, manufacturing, and retail.
- Protection strategies include MFA, email filtering, and DNS blocking of suspicious domains.
Already a member? Log in here