Read all Blogs from this Author
Phishing attacks are no longer just about fake emails and shady links—they’re evolving into stealth operations that outsmart even the most advanced detection tools. In this blog, CloudSEK’s Threat Research Team reveals how modern phishers use geo-fencing, user-agent filtering, and other evasive tactics to stay hidden from traditional scanners. Backed by real-world examples and expert insights, we also show how CloudSEK’s XVigil platform, powered by its Fake Domain Finder (FDF) module, is uncovering what others miss. Read on to learn how today’s phishing campaigns are engineered to deceive—and how to fight back.
Cybercriminals are exploiting DeepSeek’s rising popularity to launch ClickFix phishing campaigns, tricking users into clicking fake CAPTCHA links that steal credentials and install malware like Vidar and Lumma Stealer. These attacks impersonate DeepSeek’s branding to appear legitimate, bypass security measures, and infect unsuspecting victims. CloudSEK’s Threat Research Team has uncovered a malicious domain distributing malware via deceptive verification buttons. Learn how to spot these scams, secure your accounts with MFA, and avoid becoming the next victim! Stay informed and shield your data NOW before it’s too late! 🔥
Read all Whitepapers and reports from this Author
In 2022, CloudSEK’s TRIAD identified several incidents, especially targeting banking customers, and released advisories to inform the affected SaaS companies and the public. As this trend continues, we recommend that SaaS companies and consumers stay alert to these tactics in 2023 as well.
Read More
CloudSEK has identified an increase in cyber threats targeting the banking sector in 2022, as compared to the same period in 2021.
Read MoreRead all knowledge base articles from this Author