Cyble researchers uncovered a sophisticated phishing campaign targeting Hungarian government entities, linked to global attacks on banking and logistics sectors. The campaign used stealth tactics like hosting on AWS and embedding real-time logos to evade detection and deceive victims. #HunCERT #LogoKit
Keypoints
- The phishing campaign primarily targeted Hungarian government agencies with fake login pages.
- Attackers used LogoKit phishing kits and hosted the malicious sites on Amazon S3 for stealth and credibility.
- The phishing URLs incorporated legitimate organization logos fetched in real-time, increasing their authenticity.
- The domain mettcoint[.]com has been active since February 2025, with zero detections on VirusTotal, making it hard to identify.
- Cybersecurity best practices like multi-factor authentication and employee education are critical defenses against such scams.
Read More: https://thecyberexpress.com/logokit-phishing-kit-attacks/