Summary: A sophisticated phishing campaign using the Webflow CDN has been identified, leveraging fake CAPTCHA images to deceive users into disclosing credit card information. Active since the latter half of 2024, this scheme has impacted thousands across various Netskope customers. Attackers employ SEO techniques to lead victims to malicious PDFs that lead them through a deceptive sign-up process.
Affected: Netskope customers
Keypoints :
- Phishing campaign utilizes Webflowโs content delivery network to host malicious PDF files.
- Fake CAPTCHA images trick users into providing sensitive information, including credit card details.
- The campaign employs search engine optimization to attract victims searching for common documents and titles.
Views: 9