FBI-Flagged Phishing Kit Kali365 Expands Its Reach
Summary
The Kali365 phishing kit, initially focused on Microsoft 365, has expanded its targets to include AWS, Okta, and Russian platforms. This evolution leverages device code phishing to increase its effectiveness and reach.
IFF Assessment
FOE
The expansion of a sophisticated phishing kit to new platforms and the adoption of advanced techniques like device code phishing represent an increased threat to organizations and individuals.
Defender Context
Defenders need to be aware of evolving phishing kits like Kali365 that broaden their attack surface and employ sophisticated techniques. Monitoring for credential harvesting attempts targeting cloud services and identity providers, alongside traditional email phishing, is crucial.