Netskope’s security research arm Netskope Threat Labs has a new research blog that explores a new phishing campaign designed to steal credit card information and commit financial fraud by exploiting Cloudflare's Turnstile CAPTCHA system. Jan Michael Alcantara, threat research engineer at Netskope, spearheaded this research.
According to Netskope's research, the attacker targets victims using search engines to find documents, resulting in access to a malicious PDF hosted on the Webflow CDN that contains a CAPTCHA image embedded with a phishing link, leading victims to provide sensitive information. When they attempt to solve this initial fake CAPTCHA, the attack redirects them to an authentic Cloudflare Turnstile CAPTCHA that hides the malicious nature of the attack.
Netskope explains that this is another example of how attackers are shifting tactics to use SEO and embedded phishing URLs to lead their victims to phishing sites, while relying on Cloudflare Turnstile to create the illusion of a legitimate CAPTCHA.
Now, here's today's MSSP update. Drop me a line at sharon.florentine@cyberriskalliance.com if you have news to share or want to say hi!
Today's MSSP Update
1. ArmorPoint and SentinelOne partnership: Managed security solutions provider ArmorPoint is partnering with SentinelOne to offer greater endpoint protection, threat detection and response solutions, the companies said. ArmorPoint’s partnership with SentinelOne brings AI-driven automation to its SOC, enhancing real-time threat detection and response. This collaboration tackles key cybersecurity challenges like talent shortages, budget constraints, and regulatory complexity. To jumpstart the collaboration, ArmorPoint is offering a limited-time promotion: Unlimited EDR licenses at a discounted rate for the first year.
2. Pax8, Halcyon anti-ransomware partnership: Anti-ransomware platform Halcyon has joined forces with Pax8 to bring next-gen ransomware protection to Pax8’s partner ecosystem. This strategic partnership integrates Halcyon’s anti-ransomware platform into the Pax8 Marketplace, making it available to partners and their customers to defend against ransomware attacks that bypass traditional security measures.
3. Bitdefender's BitShield APAC acquisition: Bitdefender has acquired a key part of Bitshield, which operates in Malaysia and Brunei. The acquisition marks another step in Bitdefender's expansion into APAC and the acquired BitShield division will be fully integrated into Bitdefender’s global operations, transitioning to the Bitdefender brand. BitShield will retain its identity and operations outside the Bitdefender portfolio.
4. QuSecure closes Series A funding round: Post-quantum cryptography firm QuSecure announced today the closing of additional funding, bringing its Series A round to $28M to advance its crypto-agile, quantum-resistant cybersecurity enterprise software solutions. Two Bear Capital led the round with participation from Accenture Ventures. The investment will support product development, accelerate go-to-market initiatives, and expand QuSecure’s customer base across government, financial, and critical infrastructure sectors.
5. Socure's anti-fraud platform: AI-powered digital identity verification, compliance and fraud protection firm Socure announced the general availability of its new RiskOS platform. RiskOS builds on Socure's strategic acquisition of Effectiv in October 2024 by integrating its orchestration and decisioning engine with Socure's identity verification and fraud prevention solutions that are powered by its identity graph.
