EvilTokens device-code phishing kit totally more evil than we all thought

Summary

A sophisticated phishing kit named EvilTokens has been identified, offering a complete Business Email Compromise (BEC) operational environment. This kit is described as significantly more dangerous than previously understood, facilitating complex fraudulent schemes.

IFF Assessment

FOE

The EvilTokens phishing kit enables sophisticated BEC attacks, posing a direct threat to organizations and their financial assets.

Defender Context

Defenders need to be aware of advanced phishing kits like EvilTokens that go beyond simple credential harvesting. These kits can facilitate complex social engineering and BEC attacks, requiring robust email security, user training on identifying sophisticated lures, and incident response plans that can detect and mitigate business process compromises.

Read Full Story →