China-based SMS Phishing Triad Pivots to Banks – Krebs on Security

China-based SMS Phishing Triad Pivots to Banks – Krebs on Security

China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple and Google. Until recently, the so-called “Smishing Triad” mainly impersonated toll road operators and shipping companies. But experts say these groups are now directly targeting customers of international financial institutions, while dramatically expanding their cybercrime…

Read More
Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces

Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces

Editor’s note: Sophos MDR’s Johua Rawles, Mark Parsons, Jordon Olness, and Colin Cowie contributed to this report.   One of the Internet’s most prolific cybercrime-as-a-service operations recently suffered a setback: In November, Sophos MDR noticed that detections for the Rockstar2FA “phishing-as-a-service”(PaaS) platform had suddenly gone quiet. Based on telemetry gathered by Sophos MDR, it appears…

Read More