A new large-scale smishing campaign is targeting the U.S. by sending iMessages from compromised Apple iCloud accounts with the aim to conduct identity theft and financial fraud.
The cybercrime group, dubbed Smishing Triad, is also said to be in the business of fraud-as-a-service.
According to Resecurity, the smishing kit they analyzed revealed an SQL injection vulnerability that it said allowed them to retrieve over 108,044 records of victims’ data.
Besides these types of fraud, SmishingTriad is also known to indulge in Magecart-like attacks that invade online shopping platforms with malicious code injections to intercept customer data.
The threat group’s tactics, techniques, and procedures combine two well-established methods: social engineering and the deployment of a phishing kit via iMessage.