A sophisticated phishing campaign using the W3LL Phishing Kit targets Microsoft Outlook credentials through impersonation. Identified by Group-IB, this phishing-as-a-service tool features a marketplace for customizing campaigns. It employs AitM techniques to harvest credentials via convincing emails and obfuscated phishing pages. Researchers noted its complex infrastructure, designed to evade detection and efficiently capture user data.
Microsoft takes legal action against infostealer Lumma
Microsoft has taken legal action against the information-stealing malware Lumma Stealer, blocking nearly 2,300 related websites. The US Department of Justice seized Lumma’s central command
