Microsoft uncovers giant Phishing-as-a-Service operation


Level 16
May 4, 2019
Microsoft’s security team said today that it uncovered a massive operation that provides phishing services to cybercrime gangs using a hosting-like infrastructure that the OS maker likened to a Phishing-as-a-Service (PHaaS) model.

Known as BulletProofLink, BulletProftLink, or Anthrax, the service is currently advertised on underground cybercrime forums.
The service is an evolution on “phishing kits,” which are collections of phishing pages and templates imitating the login forms of known companies.