Japanese businesses are being bombarded with millions of phishing messages

Proofpoint observes notable spike in phishing emails targeting Japanese businesses
The emails are being sent out via a kit called CoGUI
The researchers attributed the attack to a Chinese-speaking threat actor

Threat actors are flooding Japanese businesses with phishing attacks, and are using a unique phishing kit framework called CoGUI to do it.

Cybersecurity researchers Proofpoint say they have observed a “notable increase” in high-volume Japanese language campaigns using CoGUI in the wild in October 2024, before starting to track it in December of the same year.

“The campaigns typically include a high-volume of messages, with counts ranging from hundreds of thousands to tens of millions per campaign, with an average of approximately 50 campaigns per month campaigned by our researchers,” Proofpoint explained.

Millions of messages

The campaign peaked in January 2025, when 172 million messages were sent out.

The attackers were mostly pretending to be Amazon, PayPal, or Rakuten, but other brands were abused, as well. Japan was, by far, the most targeted country, but Proofpoint also said that there were victims in Australia, New Zealand, Canada, and the United States.

The goal of the campaign was to steal people’s login credentials, and system information. That data includes the geographical location of the IP address, language configuration of the browser, browser type and version, monitor height and width, OS, and the type of device used (mobile, desktop, laptop).

Proofpoint added the kit cannot grab 2FA code, but still described it as “sophisticated”, with advanced evasion techniques such as geofencing, header fencing, and fingerprinting.

These allowed the threat actors to focus on specific geographies, while evading most of today’s security measures.

The researchers attributed the attacks to a Chinese-speaking threat actor that mainly targets Japanese language speakers in Japan.

The best way to defend against these attacks remains the same – to use common sense, and slow down when reading and responding to email messages.

https://cdn.mos.cms.futurecdn.net/krBVBETP6cmxBcihGXQFy8.jpg

Source link

Is the Galaxy S25 Edge ready for its debut? Samsung sets May 12 for virtual Galaxy Unpacked

How to watch IIHF World Championship 2025: live stream ice hockey online

This tiny $829 box has more power than your full-size PC – and it runs 8K games with ease

How to watch Giro d’Italia 2025 live stream, potentially for free

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Golden Crossovers: These 5 stocks signal bullishness on May 8 – Bullish Signals

First National Bank Alaska announces unaudited results for first quarter 2025

Shares firm on hopes for trade deals, dollar tries to hold post-Fed bounce

Nxu president Annie Pratt sells $14,327 in stock

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

Japanese businesses are being bombarded with millions of phishing messages

Golden Crossovers: These 5 stocks signal bullishness on May 8 – Bullish Signals

First National Bank Alaska announces unaudited results for first quarter 2025

Shares firm on hopes for trade deals, dollar tries to hold post-Fed bounce

Nxu president Annie Pratt sells $14,327 in stock

Leave a reply Cancel reply