Cybersecurity experts have uncovered a new AI-driven phishing campaign targeting Brazilian government agencies, which uses legitimate website builders to create convincing fake sites. These sites aim to steal sensitive data and solicit small payments via PIX, employing SEO poisoning to increase visibility. #DeepSiteAI #BlackBoxAI #BrazilianGovernment #PIXPayment
Keypoints
- The campaign uses AI-powered website tools to craft realistic phishing pages mimicking government sites.
- Phishing sites are designed to deceive users into submitting personal information and making small payments.
- Advanced source code analysis shows signatures of generative AI and unique styling trends like TailwindCSS.
- The attackers employ staged data collection and API validation to enhance the credibility of the fake sites.
- A separate malware campaign involving Efimer Trojan exploits WordPress vulnerabilities to steal cryptocurrency wallets.
Read More: https://thehackernews.com/2025/08/ai-tools-fuel-brazilian-phishing-scam.html