Summary: CTM360 has reported a significant rise in SMS-based phishing campaigns known as PointyPhish and TollShark, targeting consumers globally through automated tactics. Both campaigns leverage urgency and impersonation of trusted entities to extract sensitive financial information, posing a severe threat to a wide range of customers. The campaigns are powered by the Darcula Suite platform, enabling expedited execution and management of phishing operations.
Affected: Customers of various banks, airlines, and retail stores worldwide
Keypoints :
- PointyPhish uses fake SMS alerts about expiring reward points to direct customers to fraudulent sites.
- TollShark impersonates toll authorities, luring individuals to provide personal information under the pretense of paying fines.
- Both campaigns utilize the Darcula Suite PhaaS platform, simplifying the launch of phishing sites and employing multi-channel SMS delivery.
- CTM360 has expanded its research to uncover over 16,000 impersonation sites associated with the PlayPraetor campaign.
- Detailed attack lifecycle mapping indicates how urgency and deceptive messaging facilitate data theft.