Threat actors are abusing the LiveChat SaaS platform to impersonate brands like PayPal and Amazon in phishing campaigns designed to steal credentials, credit card details, MFA codes, and other sensitive data. Victims are lured through phishing emails and directed to LiveChat pages where attackers use chat interactions to request personal and financial information. The campaign highlights how cybercriminals are increasingly leveraging legitimate services and real-time engagement to make phishing attacks appear more trustworthy.
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2026/03/livechat-abuse-how-phishers-are-exploiting-saas-support-tools-to-steal-sensitive-data/
