Researchers at Proofpoint outlined a new Phishing-as-a-service (PhaaS) platform advertised on the dark web, named EvilProxy.

Threat actors have started a growing market that provides MFA PhaaS, using opensource kits.

As a result, even inexperienced and less skilled threat actors can gain access to phishing kits for various online platforms such as Gmail, Microsoft, Twitter, and more.

EvilProxy is one such phishing interface that effectively facilitates Business Email Compromise (BEC) and account takeover attacks.