Phishing with Cloudflare Workers: Transparent Phishing and HTML Smuggling
Essential information
- Published
- 28/05/2024 12:36
- Modified
- 28/05/2024 12:59
- Tags
- 2024-05-28 cloudflare workers credential-theft html smuggling phishing
- Related entities
- 134 observables, 4 techniques (mitre)
Description
Netskope Threat Labs has been tracking an increase in phishing campaigns hosted on Cloudflare Workers. The campaigns use techniques like HTML smuggling and transparent phishing to evade detections. The phishing pages target Microsoft and Google credentials. Netskope recommends inspecting web traffic to detect and block phishing sites.