Explore the hidden dangers of Twitter's 'Cards' feature in our comprehensive analysis, 'Deceptive Previews: Exposing Twitter's 'Cards' Feature Vulnerability and Its Exploitation for Phishing Attacks'. This deep dive uncovers a critical security flaw that allows attackers to create misleading link previews, masquerading malicious websites as legitimate sources. Through a detailed exploration of how Twitter processes and displays URLs, we reveal how scammers exploit this vulnerability to direct users to harmful sites under the guise of trusted domains. Our investigation highlights the simplicity yet effectiveness of this attack, the challenges in validating link authenticity, especially on mobile platforms, and the continuous threat posed by sophisticated phishing schemes, including a prominent 'ETH gas fee refund' scam.

PhishFort recently identified a marked resurgence in Microsoft 365 credential-harvesting attempts, echoing tactics once prevalent in the now-defunct Phishing as a Service (PhaaS) operation known as Caffeine Store. While Microsoft 365 is a common target for credential-harvesting attacks, the recent spike is notable for its sheer volume and distinct characteristics.

Learn how this company worked to prevent scams

Find out about the most common crypto scams

Find out about the most common crypto scams

Be protected against attacks

What to do when you are targeted by attacks

Protecting users in real time

Our second collaboration with MyCrypto

The rise of chrome extension phishing

Explore some of the reasons why the crypto industry is susceptible to these attacks.

We’ll explore how the DMCA came to be, how it works, and how it can help you.

Social media phishing is on the rise

Phishers started taking attacks against the crypto industry with the Web3 ecosystem

In this blog we’ll share a few ideas on how to keep your copyright and trademark protected from unwanted content thieves.

We’ve had a year packed full of breakthroughs at PhishFort.

Having your content copied is not only frustrating, it can also damage your brand.

Our early warning systems recently detected trustwället[.]com, an obvious phishing clone of the popular Trust Wallet app, hosted at trustwallet.com.

Attackers constantly find new methods for stealing funds from users

Our mission at PhishFort is to safeguard the crypto space from scams.

Binance Labs has invested in PhishFort.

Security remains one of the biggest barriers to widespread adoption of crypto.

Phishing is an incredibly common technique used by cyber-criminals to steal information and money.

PhishFort is proud to announce that we’ve recently teamed up with Paxful, the world’s second largest peer-to-peer Bitcoin marketplace!

Binance is one of the world’s largest cryptocurrency exchanges so it’s no surprise that often criminals target Binance accounts in their phishing campaigns.

Phishing is a big problem and there certainly isn’t one solution that will make it go away.

This is a brief exploration of an attack that surfaced one night and was reported on twitter against a user of the Cryptocurrency exchange Luno.

We’re excited to release the latest addition to our family of anti-phishing tools for the cryptocurrency industry.

Our early warning systems recently detected a spike in Binance related attacks.