{"id":348201,"date":"2025-09-23T01:05:00","date_gmt":"2025-09-23T08:05:00","guid":{"rendered":"https:\/\/cms-articles.softonic.io\/es\/?p=396634"},"modified":"2025-09-23T01:05:23","modified_gmt":"2025-09-23T08:05:23","slug":"the-cases-of-phishing-as-a-service-targeting-brands-are-increasing-alarmingly","status":"publish","type":"post","link":"https:\/\/cms-articles.softonic.io\/en\/the-cases-of-phishing-as-a-service-targeting-brands-are-increasing-alarmingly\/","title":{"rendered":"The cases of phishing as a service targeting brands are increasing alarmingly"},"content":{"rendered":"\n

Phishing as a service (PhaaS) has grown alarmingly, with over 17,500 domains targeting 316 brands in 74 countries, according to a recent report by Netcraft. This surge in the use of phishing tools is due to the popularity of platforms like Lucid and Lighthouse<\/strong>, which facilitate large-scale phishing campaigns and template customization, revealing a complex ecosystem where cybercriminals operate more easily.<\/p>\n\n\n

A problem for small and large businesses<\/h2>\n\n\n

Lucid, documented by the Swiss cybersecurity company PRODAFT, allows operators to send phishing messages via SMS using services like iMessage and RCS. With advanced customization features, attackers can design specific campaigns that require elaborate setup<\/strong>, ensuring that only selected targets access the fraudulent links.<\/p>\n\n\n

The activity of PhaaS is associated with a threat group known as XinXin, which collaborates with other actors such as LARVA-246. These groups have been able to innovate in their tactics, using more sophisticated attacks<\/strong>, such as the creation of fake domains that employ Japanese Hiragana characters to deceive users, especially in the field of cryptocurrencies.<\/p>\n\n\n

\n