Emerging Threats in Mobile Messaging
Lucid Phishing Platform Exploits iMessage and Android RCS
Have you ever received one of those text messages warning you about unpaid tolls, or maybe a shipping or tax payment? That’s likely a phishing text message from Chinese cybercriminal group, Lucid.
In recent developments, the cybersecurity community has identified a new threat targeting popular messaging protocols. The Lucid Phishing-as-a-Service (PhaaS) platform, developed by Chinese cybercriminals, exploits vulnerabilities in iMessage and Rich Communication Services (RCS) on Android devices.
Lucid’s creators, known for their previous malware platform Darcula, have designed sophisticated phishing campaigns that impersonate 169 organizations across 88 countries. These campaigns primarily target postal services, courier companies, and financial institutions, aiming to deceive victims into revealing their credit card information.
Despite the security features of iMessage and RCS, Lucid’s phishing texts have achieved a notable success rate of approximately 5%. The platform employs advanced techniques, including time-limited, single-use URLs and brand-specific mimicking, to evade detection and increase the likelihood of successful attacks.
As cybercriminals continue to evolve their tactics, it is crucial for individuals and organizations to remain vigilant and adopt robust security measures to protect against phishing threats.
Remember to use the SLAM method when you receive any type of message, email or messaging.
Sender – Check the sender closely. Look for misspelled domains, or a completely different email address or phone number than the name of the sender. Ultimately, if you don’t recognize the sender, proceed cautiously and don’t open attachments or click on links.
Links – Hover over (but don’t click) on any links, and avoid clicking on any links that you don’t recognize. You can also type in the URL of the legitimate site directly.
Attachments – Don’t open attachments from anyone that you don’t know, and be suspicious of attachments from people that you know, but weren’t expecting.
Message – Check the subject line and body for suspicious language, misspelled words, and bad grammar.