You may already be familiar with cloud service models like:
- Infrastructure as a Service (IaaS) - Google Cloud, Azure
- Software as a Service (SaaS) - Gmail, Dropbox
But what about Phishing as a Service?
Phishing as a Service (PhaaS) is a growing threat that affects businesses and individuals alike. It is a form of cybercrime where attackers rent or buy phishing kits from online vendors rather than building their own infrastructure from scratch.
One new PhaaS platform named "Greatness" has been employed by cybercriminals targeting business users of Microsoft 365. It generates convincing decoy login pages that act as a reverse proxy, sitting in front of the real server and forwarding requests to it, harvesting both credentials and TOTPs (time-based one-time passwords) entered by victims in real time.
PhaaS lowers the barrier to entry for phishing attacks dramatically. It requires no technical skills or infrastructure from the attacker. Anyone can purchase a phishing kit for a relatively low price and begin sending convincing emails that can have devastating consequences for individuals and organisations.
Stay vigilant.
Originally published on LinkedIn.