"Interpol Takes Down 16shop Phishing-as-a-Service Platform"
The 16shop Phishing-as-a-Service (PhaaS) platform has been taken down in a joint operation involving Interpol and cybersecurity companies. PhaaS platforms provide cybercriminals with a one-stop shop for launching phishing attacks. These platforms usually include email distribution, ready-made phishing kits for popular brands, hosting, data proxying, victim overview dashboards, and other tools. They pose a significant threat because they allow inexperienced cybercriminals to conduct phishing attacks with just a few clicks. Group-IB, which helped Interpol with the takedown, reports that the 16shop platform offered phishing kits targeting Apple, PayPal, American Express, Amazon, Cash App, and more. According to Group-IB's telemetry data, 16shop is responsible for creating 150,000 phishing pages that targeted people mainly from Germany, Japan, France, the US, and the UK. 16shop-created phishing pages compromised at least 70,000 users from 43 countries. The data stolen in these attacks include personal information, account emails, passwords, ID cards, credit card numbers, and telephone numbers. This article continues to discuss the shutdown of the 16shop PhaaS platform.
Bleeping Computer reports "Interpol Takes Down 16shop Phishing-as-a-Service Platform"