A new version of the phishing-as-a-service platform “Darcula” has been launched, allowing anyone to spoof any brand online without technical expertise. The latest version, Darcula V3, enables users to copy and paste a URL into the platform’s interface, and it will generate a fully fledged phishing kit.
The new feature makes it easier for scammers to create convincing phishing emails and websites that mimic major brands such as Apple and Netflix. Researchers from Netcraft expect Darcula V3 to launch this month, but it is currently undergoing user testing.
Darcula’s previous version, V2, offered over 200 phishing templates, including those mimicking companies from more than 100 countries. The new V3 takes this a step further by allowing users to enter any URL and create a custom phishing kit.
Netcraft’s director of engineering, Graham Edgecombe, warns that Darcula’s latest feature makes it “very convincing” for scammers to deceive victims. The platform also offers anti-detection measures to evade cybersecurity companies and Web crawlers.
While the exact pricing for Darcula V3 is unknown, its previous version cost $249 per month. However, some phishing kits are often given away for free or at a low cost, allowing scammers to collect credentials without earning money directly from the kit.
Source: https://www.darkreading.com/threat-intelligence/darcula-phishing-kit-impersonate-brand