CGI Weekly

Lucid, a newly discovered Phishing-as-a-Service (PhaaS) platform, is driving a surge in phishing attacks targeting iOS and Android users. It allows cybercriminals to craft and distribute phishing campaigns through SMS, RCS, and iMessage while evading detection by traditional security tools due to being able to avoid spam filters. Lucid automates the creation and management of phishing campaigns, making it easy for attackers to execute large-scale attacks and the entry point for malicious actors is lowered.

Key Findings

• Sophisticated Phishing Campaigns: Lucid provides pre-built templates that impersonate banks, telecom providers, and other trusted entities, enabling attackers to quickly launch effective phishing campaigns​
• Device-Specific Targeting: The platform tailors content to fit iOS and Android devices, ensuring maximum engagement and minimizing detection.
• Automation and Campaign Management: Lucid’s user-friendly interface enables attackers to adjust phishing campaigns in real time, optimizing success rates​
• Credential Harvesting and Fraud: Lucid steals credentials and other sensitive data, enabling financial fraud and account takeovers.

For more information see Prodraft report:
https://catalyst.prodaft.com/public/report/lucid/overview

Conclusion

Lucid’s sophisticated PhaaS platform has made high-impact phishing attacks accessible to threat actors. Security teams must implement stronger mobile security measures and ensure users are educated about the evolving threat landscape.