Phishing has always been about deceiving people. But in this campaign, I discovered something new. The attackers weren’t only targeting users, they also attempted to manipulate AI-based defences. That campaign relied on urgency, redirects, and a credential-harvesting site. This one keeps the same delivery chain but introduces something different, hidden AI prompts inside the email designed to confuse automated analysis.

In this blog post, ThreatLabz explores a campaign that uses generative AI tools like DeepSite AI and BlackBox AI to create malicious replicas of Brazil's State Department of Traffic and Ministry of Education. Our technical analysis explains the telltale signs of AI generated source code, and how the campaign uses API validation to establish legitimacy. In addition, our analysis shows how the final stage of the campaign involves prompting victims to make payments using Pix, Brazil's instant payment system.

The Fédération Internationale de l'Automobile (FIA), the governing body for Formula 1 and other top motorsports around the world, has revealed it recently suffered a cyberattack which saw threat actors gain access to several email accounts.

In today’s digital world, passwords and encryption form the backbone of security. They safeguard banking transactions, government files, and personal information from cybercriminals. Yet, that backbone is on the verge of collapse. The culprit: quantum computing a technology capable of performing calculations so rapidly that existing security frameworks could crumble in an instant.