Phish For The Future
| Primary URL | Location | Industry | Undetermined |
Country
United States of America
|
Non-Profit
|
|---|
Profile
The organization operates under the alias Phish For The Future.
Its headquarters is situated in the United States of America.
A significant incident linked to the group took place on July 7, 2017.
That incident was characterized as a spearphishing campaign.
The campaign was brought to public attention by the Electronic Frontier Foundation.
The spearphishing effort focused on digital civil liberties activists.
Those activists were affiliated with two separate internet freedom organizations.
The campaign involved nearly seventy attempts to steal credentials.
The credentials sought were for use with business services.
Specifically, the services named in the attempts were Google, Dropbox, and LinkedIn.
At least one inactive account was successfully compromised during the operation.
The compromised account was subsequently used to send additional phishing messages inside the target organizations.
The attackers displayed notable persistence throughout the episode.
They continuously adjusted their tactics after each unsuccessful attempt.
Over time, they refined their targeting strategies to improve effectiveness.
As a result, credential theft was confirmed by investigators.
Nevertheless, the ultimate goal of the campaign beyond obtaining those credentials remained undetermined.