Summary: A widespread phishing campaign is exploiting fake PDF documents hosted on Webflow’s CDN to steal credit card information. Victims are misled into filling out sensitive data via a counterfeit CAPTCHA process, giving attackers access to personal information. Additionally, a phishing kit named Astaroth is also being marketed, enabling cybercriminals to bypass two-factor authentication by intercepting user traffic.
Affected: Webflow CDN users, individuals searching for documents online
Keypoints :
- Attackers target users searching for documents on search engines like Google.
- Victims are led to malicious PDFs that employ fake CAPTCHA images to capture sensitive information.
- Astaroth phishing kit, advertised for ,000, enables traffic manipulation to bypass login security for major services.
Source: https://thehackernews.com/2025/02/hackers-use-captcha-trick-on-webflow.html