Tag: smishing

‘Phoenix System”: Globale Phishing-Plattform für Massen-Smishing enttarnt

May 6, 2026 3:47 PM

Tags: mfa, phishing, smishing

Das ‘Phoenix System” ist eine PhaaS-Plattform für massenhaftes Smishing mit Echtzeit-MFA-Umgehung und über 2.500 Phishing-Domains weltweit. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/phishing-plattform-massen-smishing
Smishing at Scale: What Our Expert Panel Revealed About the Mobile Phishing Supply Chain

May 4, 2026 5:48 PM

Tags: finance, mobile, phishing, smishing, supply-chain

Recap of the live panel hosted by Constella and WMC Global on April 30, 2026 â–¶ Watch the full recording If you’ve gotten a text recently warning you about an unpaid toll, a missed delivery, or suspicious activity on your bank account, you’ve interacted, however briefly, with one of the most sophisticated fraud… First seen…
Chinese-Backed Smishing Rings Scale Credential Theft via SMS and OTT Apps

Apr 28, 2026 12:39 PM

Tags: china, credentials, cyber, organized, phishing, service, smishing, theft

Chinese-language phishing-as-a-service (PhaaS) platforms are rapidly expanding their global reach by leveraging SMS and over-the-top (OTT) messaging channels such as iMessage and Rich Communication Services (RCS). Over the past several months, researchers have conducted large-scale analysis to identify and track some of the most active Chinese-backed phishing ecosystems. Their findings reveal highly organized operations that…
$80 Billion Lost to SMS Fraud Last Year. The Good News Is Wrong.

Apr 24, 2026 7:38 PM

Tags: fraud, mobile, smishing, threat

Mobile fraud losses are projected to decline in 2026. That headline is technically accurate and deeply misleading. The fraud is not going away. It is changing channels, picking up speed, and getting harder to stop. The number looks like progress. Global subscriber losses from SMS fraud, smishing, account takeover, and related mobile threats reached $80……
Booking.com Breach Shows Exactly How Smishing Attacks Get Made

Apr 17, 2026 10:37 PM

Tags: attack, breach, data-breach, phone, smishing

Booking.com’s breach exposed names, phone numbers, and booking details now being used in targeted WhatsApp phishing. Constella explains how the PII-to-smishing pipeline works and what to do about it. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/booking-com-breach-shows-exactly-how-smishing-attacks-get-made/
Die Paket-SMS, die keine ist: Wie Smishing die Nutzer in die Falle lockt

Apr 9, 2026 11:52 AM

Tags: smishing

Die Betrugsversuche folgen oft einem ähnlichen Muster. Eine Nachricht von einer scheinbar lokalen Telefonnummer informiert darüber, dass ein Paket nicht zugestellt werden konnte. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/die-paket-sms-die-keine-ist-wie-smishing-die-nutzer-in-die-falle-lockt/a44546/
Trojanized Red Alert App Targets Israeli Users in SMS Scam to Steal Sensitive Data

Mar 11, 2026 8:47 AM

Tags: android, cyber, data, mobile, scam, service, smishing, spyware

A mobile spyware campaign abusing a trojanized version of the Red Alert rocket warning Android app to target Israeli users via SMS smishing messages that impersonate official Home Front Command alerts. The fake app keeps full rocket alert functionality so it looks and behaves like the legitimate service while silently exfiltrating sensitive data in the…
Lehren aus dem Substack-Hack

Feb 12, 2026 1:58 PM

Tags: cyberattack, login, mail, password, phishing, smishing, social-engineering, spam

Anfang Februar machte die Meldung die Runde, dass die Newsletter-Plattform Substack einen Datenverlust vermelden musste. Zwar sind wohl keine Finanzdaten oder Login-Passwörter kompromittiert worden, dennoch sollte das Durchsickern von E-Mail-Adressen und Telefonnummern nicht unterschätzt werden. Diese Daten könnten für gezielte Social-Engineering-Angriffe, Spam-Kampagnen, Phishing-E-Mails und zunehmend auch für Smishing-Angriffe per SMS missbraucht werden. Social-Engineering-Taktiken haben sich…
KnowBe4 feiert zehn Jahre KI-Innovation mit sieben AI Defense Agents im Einsatz

Jan 30, 2026 12:21 PM

Tags: ai, defense, phishing, smishing

Bereits seit 2016 arbeitet KnowBe4 auf Basis von über 15 Jahren gesammelter Daten zu Benutzerverhalten und Bedrohungsinformationen an KI-gesteuerten Sicherheitslösungen. Das Unternehmen kombinierte frühzeitig Phishing, Vishing und Smishing First seen on infopoint-security.de Jump to article: www.infopoint-security.de/knowbe4-feiert-zehn-jahre-ki-innovation-mit-sieben-ai-defense-agents-im-einsatz/a43511/
Erpressung nach Smishing bei Analytics-Dienstleister – Pornhub meldet Diebstahl von Kundendaten Hacker drohen mit Leak

Dec 22, 2025 7:19 AM

Tags: extortion, hacker, leak, smishing

First seen on security-insider.de Jump to article: www.security-insider.de/pornhub-datenabfluss-mixpanel-shinyhunters-smishing-a-e567d92c5ab31a5c3e1900c16de81073/
Hackers Claim Stealing 94GB of Pornhub Premium User Watch Histories

Dec 17, 2025 2:19 PM

Tags: attack, breach, cybercrime, data, extortion, group, hacker, smishing

Cybercriminal group ShinyHunters targets former Pornhub Premium users in a massive 94GB data extortion campaign. Learn about the stolen data details, the involvement of a smishing attack, and the conflicting reports on the breach. First seen on hackread.com Jump to article: hackread.com/hackers-pornhub-premium-user-watch-histories/
Hackers Claim Stealing 94GB of Pornhub Premium User Watch Histories

Dec 17, 2025 2:19 PM

Tags: attack, breach, cybercrime, data, extortion, group, hacker, smishing

Cybercriminal group ShinyHunters targets former Pornhub Premium users in a massive 94GB data extortion campaign. Learn about the stolen data details, the involvement of a smishing attack, and the conflicting reports on the breach. First seen on hackread.com Jump to article: hackread.com/hackers-pornhub-premium-user-watch-histories/
Nutzerdaten abgeflossen: Dienstleister von OpenAI fällt auf Phishing-SMS rein

Nov 27, 2025 1:49 PM

Tags: chatgpt, openai, phishing, smishing

Bei dem Webanalyse-Dienstleister Mixpanel sind durch eine Smishing-Attacke Daten abgeflossen. Das betrifft auch Nutzer des ChatGPT-Entwicklers OpenAI. First seen on golem.de Jump to article: www.golem.de/news/datenleck-openai-dienstleister-faellt-auf-phishing-sms-rein-2511-202663.html
Datenleck: OpenAI-Dienstleister fällt auf Phishing-SMS rein

Nov 27, 2025 12:49 PM

Tags: chatgpt, data-breach, openai, phishing, smishing

Bei dem Webanalyse-Dienstleister Mixpanel sind durch eine Smishing-Attacke Daten abgeflossen. Das betrifft auch Nutzer des ChatGPT-Entwicklers OpenAI. First seen on golem.de Jump to article: www.golem.de/news/datenleck-openai-dienstleister-faellt-auf-phishing-sms-rein-2511-202663.html
Smishing Triad Impersonation Campaigns Expand Globally

Nov 25, 2025 5:49 PM

Tags: smishing

A cluster of fraudulent domains impersonating Egyptian providers have been identified linked to Smishing Triad operations First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/smishing-triad-campaigns-expand/
Google Uses Courts, Congress to Counter Massive Smishing Campaign

Nov 16, 2025 6:50 PM

Tags: credit-card, google, group, phishing, scam, service, smishing

Google is suing the Smishing Triad group behind the Lighthouse phishing-as-a-service kit that has been used over the past two years to scam more than 1 million people around the world with fraudulent package delivery or EZ-Pass toll fee messages and stealing millions of credit card numbers. Google also is backing bills in Congress to…
Google Sues Operators of Lighthouse Smishing Campaign

Nov 14, 2025 10:49 PM

Tags: china, credentials, google, phishing, service, smishing

More Than 1M Victims Affected Globally. Tech giant Google sued the Chinese-speaking operators of a phishing-as-a-service operation in what it hopes will be a first step to deterring the prolific service behind hundreds of thousands of fraudulent websites used to steal credentials from millions of victims. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/google-sues-operators-lighthouse-smishing-campaign-a-30042
Google Sues Operators of Lighthouse Smishing Campaign

Nov 14, 2025 10:49 PM

Tags: china, credentials, google, phishing, service, smishing

More Than 1M Victims Affected Globally. Tech giant Google sued the Chinese-speaking operators of a phishing-as-a-service operation in what it hopes will be a first step to deterring the prolific service behind hundreds of thousands of fraudulent websites used to steal credentials from millions of victims. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/google-sues-operators-lighthouse-smishing-campaign-a-30042
Google Files Lawsuit to Dismantle ‘Lighthouse’ Smishing Kit

Nov 14, 2025 11:49 AM

Tags: china, cyber, google, smishing

Google filed a civil lawsuit against 25 individuals accused of ties to a Chinese cyber collective known as the ‘Smishing Triad’ First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-lawsuit-dismantle/
Google Files Lawsuit to Dismantle ‘Lighthouse’ Smishing Kit

Nov 14, 2025 11:49 AM

Tags: china, cyber, google, smishing

Google filed a civil lawsuit against 25 individuals accused of ties to a Chinese cyber collective known as the ‘Smishing Triad’ First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-lawsuit-dismantle/
Google asks US court to shut down Lighthouse phishing-as-a-service operation

Nov 13, 2025 5:49 AM

Tags: control, crime, cyber, cybercrime, cybersecurity, email, google, government, incident response, law, malicious, network, phishing, risk, sans, scam, service, smishing, technology, threat

Will have ‘minimal impact’: Ed Dubrovsky, chief operating officer of incident response firm Cypher, is skeptical of the effectiveness of court action. Phishing-as-a-service operations don’t have to be on American soil, he explained, so court orders and legislation will likely have minimal impact on smishing or phishing attacks.”However,” he added, “I can understand that even…
Google Looks to Dim ‘Lighthouse’ Phishing-as-a-Service Op

Nov 13, 2025 12:49 AM

Tags: google, group, phishing, service, smishing

The phishing kit, run by a group known as the Smishing Triad, has powered massive amounts of unpaid tolls and package tracking texts. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/google-dim-lighthouse-phishing-as-a-service
Google sues cybercriminal group Smishing Triad

Nov 12, 2025 10:49 PM

Tags: attack, china, cybercrime, finance, google, group, phishing, service, smishing

Google sues China-based group using “Lighthouse” phishing kit in large-scale smishing attacks to steal victims’ financial data. Google filed a lawsuit against a cybercriminal group largely based in China that is behind a massive text message phishing operation, or “smishing.” The organization uses a phishing-as-a-service kit named “Lighthouse” to steal sensitive financial information by sending…
Google files lawsuit against Lighthouse ‘phishing for dummies’ text scammers

Nov 12, 2025 8:49 PM

Tags: china, google, phishing, scam, service, smishing

The suspected Chinese schemers behind it enable those constant fake E-Z Pass and U.S. Postal Service smishing messages. First seen on cyberscoop.com Jump to article: cyberscoop.com/google-files-lawsuit-against-lighthouse-phishing-for-dummies-text-scammers/
Google files lawsuit to disrupt massive ‘Lighthouse’ smishing scheme

Nov 12, 2025 6:49 PM

Tags: attack, credit-card, google, phishing, scam, smishing, tool

According to the tech giant, the accused criminals developed the “Lighthouse” phishing kit, which provides custom tools to scammers to deploy “smishing”, or SMS phishing, attacks and to build fraudulent websites designed to steal victims’ credit card information. First seen on therecord.media Jump to article: therecord.media/google-files-lawsuit-to-disrupt-lighthouse-scam
Google files lawsuit to disrupt massive ‘Lighthouse’ smishing scheme

Nov 12, 2025 6:49 PM

Tags: attack, credit-card, google, phishing, scam, smishing, tool

According to the tech giant, the accused criminals developed the “Lighthouse” phishing kit, which provides custom tools to scammers to deploy “smishing”, or SMS phishing, attacks and to build fraudulent websites designed to steal victims’ credit card information. First seen on therecord.media Jump to article: therecord.media/google-files-lawsuit-to-disrupt-lighthouse-scam
How crooks use IT to enable cargo theft

Nov 5, 2025 5:19 AM

Tags: access, ai, api, attack, authentication, awareness, breach, business, control, crime, cyber, cybersecurity, data, detection, email, endpoint, finance, fraud, government, group, incident response, infosec, infrastructure, insurance, Internet, jobs, law, login, mfa, network, password, phishing, privacy, risk, skills, smishing, social-engineering, supply-chain, technology, theft, threat, tool, training, vulnerability

Value of stolen shipments has doubled: It’s hard to determine the size of this IT-related cargo theft problem. The US National Insurance Crime Bureau estimates cargo theft losses from all sources increased 27% last year compared to 2023, to $35 billion.Versik CargoNet, a company that tracks physical supply chain crime for law enforcement agencies, insurance…
How crooks use IT to enable cargo theft

Nov 5, 2025 5:19 AM

Tags: access, ai, api, attack, authentication, awareness, breach, business, control, crime, cyber, cybersecurity, data, detection, email, endpoint, finance, fraud, government, group, incident response, infosec, infrastructure, insurance, Internet, jobs, law, login, mfa, network, password, phishing, privacy, risk, skills, smishing, social-engineering, supply-chain, technology, theft, threat, tool, training, vulnerability

Value of stolen shipments has doubled: It’s hard to determine the size of this IT-related cargo theft problem. The US National Insurance Crime Bureau estimates cargo theft losses from all sources increased 27% last year compared to 2023, to $35 billion.Versik CargoNet, a company that tracks physical supply chain crime for law enforcement agencies, insurance…
Is your perimeter having an identity crisis?

Oct 29, 2025 10:31 AM

Tags: access, ai, attack, authentication, breach, business, cloud, communications, credentials, data, data-breach, defense, detection, email, endpoint, identity, infrastructure, intelligence, malicious, mfa, mobile, network, phishing, phone, RedTeam, resilience, smishing, social-engineering, strategy, tactics, threat

Craft phishing, smishing and vishing. Creating hyper-personalized emails that can be grammatically perfect, contextually aware and emotionally resonant. These messages no longer demonstrate the telltale signs of traditional phishing like broken English or generic greetings.Synthesize trust. Using voice-cloning AI to leave a quick, urgent voicemail from a trusted executive, bypassing the skepticism you’ve trained into…
Auch deutsche Nutzer betroffen: Riesige Smishing-Kampagne umfasst 194.000 Domains

Oct 28, 2025 12:26 PM

Tags: phishing, smishing

Die Angreifer registrieren täglich Tausende neuer Domains bei einem chinesischen Registrar und locken ihre Opfer per SMS auf Phishing-Seiten. First seen on golem.de Jump to article: www.golem.de/news/auch-deutsche-nutzer-betroffen-riesige-smishing-kampagne-umfasst-194-000-domains-2510-201594.html