![Friends: The Complete Series (4K UltraHD) [4K UHD]](https://techcratic.com/wp-content/uploads/2024/11/71zFLJVDUeL._SL1500_-360x180.jpg)
![#UFO FLEET | MUFON CASE # 106156 [MUST SEE] Louisiana](https://techcratic.com/wp-content/uploads/2024/11/1732148641_maxresdefault-360x180.jpg)
Stu Sjouwerman
2024-10-28 09:15:00
blog.knowbe4.com
Cybercriminals are offering tools to help phishing pages avoid detection by security tools, according to researchers at SlashNext.
“Anti-bot services, like Otus Anti-Bot, Remove Red, and Limitless Anti-Bot, have become a cornerstone of complex phishing operations,” the researchers write. “These services aim to prevent security crawlers from identifying phishing pages and blocklisting them. By filtering out cybersecurity bots and disguising phishing pages from scanners, these tools extend the lifespan of malicious sites, helping criminals evade detection longer.”
These tools are sophisticated and easy to use, allowing unskilled attackers to increase the effectiveness of their attacks for a relatively low price.
“Otus Anti-Bot is one of the most popular solutions, claiming to deploy behavioral analysis, challenge-response mechanisms, bot signature detection, and integration with threat intelligence feeds,” the researchers write.
“What sets Otus apart is its incredibly quick deployment—users can get it running on their phishing pages in under two minutes. Once deployed, Otus allows dynamic configuration changes, meaning the user only needs to paste the code once, and any updates to protection settings are applied in real time across multiple pages. The platform also offers easy IP and country-based whitelisting for customized testing and targeting.”
These tools also allow attackers to target phishing campaigns by region, further minimizing their detection rates.
“Some campaigns are region-specific, allowing anti-bot systems to block foreign traffic entirely,” SlashNext says. “For example, if a phishing campaign is targeting a Korean bank, the service might allow only Korean traffic to visit the site while blocking foreign IP addresses. This method can even be drilled down to the city level, ensuring the page remains under the radar of international cybersecurity services.”
Attackers are always finding new ways to stay ahead of security technologies. New-school security awareness training can give your organization an essential layer of defense by enabling your employees to recognize attacks that slip past security measures.
KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
SlashNext has the story.
Support Techcratic
If you find value in Techcratic’s insights and articles, consider supporting us with Bitcoin. Your support helps me, as a solo operator, continue delivering high-quality content while managing all the technical aspects, from server maintenance to blog writing, future updates, and improvements. Support Innovation! Thank you.
Bitcoin Address:
bc1qlszw7elx2qahjwvaryh0tkgg8y68enw30gpvge
Please verify this address before sending funds.
Bitcoin QR Code
Simply scan the QR code below to support Techcratic.
Please read the Privacy and Security Disclaimer on how Techcratic handles your support.
Disclaimer: As an Amazon Associate, Techcratic may earn from qualifying purchases.
