24 min read

Year-End Phishing Report -  2020 WMC GLOBAL

By WMC Global Threat Intelligence Team on 2/19/21 10:15 AM

Summary 

WMC Global's Threat Intel Team analyzed thousands of phishing kits in 2020. While "16Shop" continues to be the most popular, kits capable of capturing gathering multi-factor authentication data, like "Puppeteer," are emerging. There was a large increase in SMS phishing compared to emails over 2020, indicating SMS will continue to be a substantial threat in 2021. WMC Global observed that consumer brands continued to be the primary target for phishing, with Netflix and Facebook being the most impersonated brands; however, WMC Global also observed new threat vectors for phishing in the form of COVID-themed phishing. The United States was the number one location for hosting phishing sites, with NameCheap being the provider hosting the most phishing sites over 2020. WMC Global predicts that in 2021 multi-factor authentication will become a focus for threat actors, phishing link delivery methods will continue to evolve, and phishing kit intelligence will be more prevalent in tracking threat actors. 

Topics: SMS Attack Phishing Kit finance Netflix Puppeteer Kit
6 min read

Kr3pto Puppeteer Kits: Dynamic Phishing Kit Targeting UK Banking Customers

By WMC Global Threat Intelligence Team on 12/16/20 10:00 AM

At WMC Global, we are tracking a threat actor who goes by the alias "Kr3pto," a phishing kit developer who builds and sells unique kits targeting UK financial institutions amongst other brands.

Topics: Phishing Kit finance Kr3pto Banking Puppeteer Kit Multi-Factor Authentication