Security News > 2022 > November > Phishing kit impersonates well-known brands to target US shoppers
A sophisticated phishing kit has been targeting North Americans since mid-September, using lures focused on holidays like Labor Day and Halloween.
The kit uses multiple evasion detection techniques and incorporates several mechanisms to keep non-victims away from its phishing pages.
According to Akamai, whose security researchers discovered the campaign, one of the most interesting features of the kit is a token-based system that ensures each victim is redirected to a unique phishing page URL. Campaign overview.
Depending on their exact location, the redirection takes them to a different phishing site impersonating locally available brands.
Each victim gets a unique URL. Each phishing email contains a link to a landing page with an anchor usually used to direct a visitor to a specific part of the linked-to page.
In this phishing campaign, the anchor tag represents a token used by JavaScript on the phishing landing to reconstruct a URL to which the target will be redirected.