PhaaS Platforms Lucid and Lighthouse: A Phishing Frenzy Targeting 17,500 Domains across 74 Countries
Phishing-as-a-Service, or PhaaS, is the subscription service no one asked for but cybercriminals adore. With Lucid and Lighthouse leading the charge, over 17,500 phishing domains now target 316 brands across 74 countries. From smishing to fake storefronts, these kits offer the ultimate in cyber mischief for a monthly fee.
Hot Take:
Phishing-as-a-Service—because why should cybercriminals have to do all the heavy lifting when they can just subscribe to “Netflix for Hackers” and binge-phish their way to infamy? Whether you’re into smishing, homoglyph attacks, or just good ol’ email phishing, there’s a subscription plan for every aspiring digital villain out there. And with fake storefronts for the non-targets, it’s like a BOGO deal on deceit!
Key Points:
- Phishing-as-a-Service (PhaaS) is booming, with Lucid and Lighthouse linked to 17,500 phishing domains targeting 316 brands worldwide.
- Lucid PhaaS allows large-scale phishing, sending smishing messages via multiple platforms and targeting diverse industries.
- Lighthouse, similar to Lucid, supports template customization and real-time victim monitoring, with subscriptions ranging from $88 to $1,588.
- Email is back in fashion for cybercriminals, with a 25% increase in email-based phishing attacks as Telegram loses its appeal.
- Homoglyph attacks using Japanese characters to mimic legitimate domain names are on the rise, targeting cryptocurrency users.
Already a member? Log in here