Home / Technology / New Phishing Kit Automates Cybercrime with AI
New Phishing Kit Automates Cybercrime with AI
30 Apr
Summary
- Bluekit offers phishing as a service with an AI assistant.
- It centralizes domain registration, hosting, and data exfiltration.
- The kit bypasses multi-factor authentication via session hijacking.
Researchers have uncovered Bluekit, a highly professionalized phishing kit that operates as a software-as-a-service platform. This new tool significantly lowers the barrier to entry for cybercrime by centralizing and automating all aspects of a phishing campaign through a single dashboard. Bluekit handles domain registration, site hosting, and data exfiltration, and can impersonate over 40 well-known brands and platforms. Its capabilities include geolocation emulation and an AI assistant, potentially based on jailbroken large language models, which helps craft personalized phishing emails.
The platform integrates with Telegram for real-time alerts and employs advanced evasion techniques to avoid detection by bot-detection tools and security checks. Bluekit can bypass multi-factor authentication by hijacking active browser sessions and has the ability to display a live feed of the target's screen post-login. Researchers observed that Bluekit is continuously updated, making it an increasingly potent threat.
To combat evolving threats like Bluekit, experts recommend using FIDO2 or hardware keys for authentication and conducting regular employee training to enhance vigilance against phishing attempts. The active development and growing adoption of such sophisticated, AI-assisted tools suggest Bluekit is likely to feature prominently in future cyberattacks.
