Nouvelles techniques de smishing utilisées par les scammers francophones depuis début 2025 pour escroquer leurs victimes.
Category: StalkPhish.io
In mid-December 2024, while checking the new findings of Stalkphish.io (our phishing URL detection, enrichment and investigation platform), I noticed that a CPF (MonCompteFormation – which manages personal training accounts for French citizens) phishing kit was present in one of the kit download and analysis probes. In this post I’m reproducing the LinkedIn posts I
Since last summer, StalkPhish.io, our advanced platform dedicated to combating bank fraud, phishing, and scams, has been upgraded with a system for classifying phishing kits. This enhancement allows us to effectively categorize phishing kits collected through our infrastructure, bringing a new level of insight and prevention for businesses facing phishing threats. PhishingKit-Yara-Rules: An Open Source
With the Paris 2024 Olympic and Paralympic Games approaching, a host of scams have been developed and deployed, including phishing pages harvesting personal and banking data.
We launch our first paid plan for Stalkphish.io our SaaS dedicated to detection and investigation of phishing/brand impersonation.
This phishing kit impersonates Caisse D’Epargne, a French bank, of BPCE Group. This kit was downloaded at the beginning of December 2023, by our phishing detection and investigation tool StalkPhish.io. About the phishing kit The configuration files contained in the downloaded ZIP archive were edited between November 30 and December 1, 2023: This phishing kit
An analysis of a Coinbase phishing kit designed to steal personal data, login, password and the second factor of authentication (MFA/2FA).
Chez Stalkphish nous nous plongeons – depuis plusieurs mois – dans certains réseaux de “scama”, de scammers (arnaqueurs), pratiquant des campagnes de phishing parfois assez volumineuses et qui touchent plusieurs marques, enseignes ou services du gouvernement français, comme Ameli/Carte vitale, la vignette Crit’Air, les împots, ainsi que des services privés comme Netflix ou des services bancaires tels que ceux de la Société Générale, la Banque Postale, et bien d’autres.
We launch our first paid plan for Stalkphish.io our SaaS dedicated to detection and investigation of phishing/brand impersonation.
Fight phishing (aka “Phight”) is not an easy task, you need to detect a campaign before starting to dismantle it. You can compare that to a race: the faster you detect a campaign, the faster you can start to takedown it! We created StalkPhish with this idea in mind, to be fast and accurate. Fast
At StalkPhish we like dissecting Phishing kits, first because we create Yara rules for detection, secondly because we must continually keep up to date with new developments in terms of phishing kits, finally because we like to pass on to the general public knowledge about this type of threat. This post was previously published on
Using StalkPhish.io analyzer as a threat intelligence feed for IntelOwl to speed up your threat analysis.
StalkPhish - phishing, scam and brand impersonation detection 