Summary: The threat actors behind the Darcula phishing-as-a-service platform have integrated generative artificial intelligence, allowing even less tech-savvy criminals to create sophisticated phishing pages quickly. This new capability greatly enhances the potential for customized scams by simplifying the phishing page creation process. The platform is part of a larger cybercrime ecosystem operating out of China, focusing on financially motivated attacks such as SMS phishing.
Affected: Cybercrime community, targeted victims via phishing attacks
Keypoints :
- Darcula now features AI-assisted tools for easier phishing page creation without programming knowledge.
- The platform enables customization for multi-language phishing forms, making scams more accessible to novices.
- Over 25,000 phishing pages have been taken down by cybersecurity efforts since the platform’s inception, highlighting its prevalence.
- Darcula is associated with a wider network of cybercriminal activities, including smishing attacks by the Smishing Triad.
Source: https://thehackernews.com/2025/04/darcula-adds-genai-to-phishing-toolkit.html