A new phishing tool called Fishxproxy has been discovered in the Darknet, significantly simplifying the efforts of cybercriminals. Researchers at the Slashnext Security platform identified this set of tools, which offers hackers various powerful features like antibot configurations, integration with Cloudflare Turnstile, a built-in redirector, and the ability to set page validity flexibly. These capabilities make phishing activities accessible even to individuals with minimal technical skills.
FishxProxy is designed to help cybercriminals bypass security systems and conceal their attacks. This toolset is specifically tailored for creating and managing phishing sites, thereby enhancing the likelihood of successfully stealing sensitive accounting data.
According to Slashnext researchers, FishxProxy comes equipped with advanced antibot systems to filter out automated scans and a traffic management function that conceals the true intentions of links. Moreover, the tool allows for setting up time-limited fraud to pressure victims into quick action. It also features a Cookie system for tracking users and adapting attacks based on their previous interactions. Integration with Cloudflare offers phishing operators enterprise-level infrastructure, making it harder to detect and mitigate such attacks.
In response to the increasing threat posed by phishing tools like Fishxproxy, the General Director of HOXHUNT, Mika Aalto, highlighted the dangers associated with these sets and the way they lower the entry barrier for criminals with limited resources and skills. Aalto stressed the significance of employee training and the utilization of advanced security measures to effectively combat such cyber threats.