Online fraud cases are rapidly increasing, with cybercriminals using AI to launch phishing attacks. Fraudsters are targeting people by creating fake CAPTCHA pages on platforms like Vercel and Netlify. Users are being sent spam emails asking for passwords and sensitive information.
Technology Desk, New Delhi. Cases of online fraud have increased significantly in recent times. Cybercriminals are now even using AI to launch phishing attacks. A recent report states that since January, criminals have been using free-hosting and easy-to-use website-building platforms like Vercel, Netlify, and Lovable to create fake CAPTCHA pages, and around August, these attacks have targeted a large number of people. Let's explore this in detail...
This is how people are being targeted
First, users are sent a spam email promising a password reset, delivery address change, or other "important" message. Clicking on the link in the email then takes users to a page that looks exactly like a real CAPTCHA. Yes, the same "I'm Not a Robot" CAPTCHA. Once users enter this CAPTCHA, it redirects them to a real phishing form that asks for their password and other sensitive information.
Recent reports also suggest that features like 'vibe coding' are being used on some platforms to create fake pages, while on Vercel and Netlify, AI is being used to quickly create entire phishing setups.
Follow these tips for protection
Before clicking on any email link, check the sender's email address and also check the URL.
For any verification related to bank, e-commerce or service-provider, use their website/app directly.
Keep two-factor authentication i.e. 2FA on in your account.
Never enter password, OTP or card details on suspicious pages.
If you notice any discrepancy in any form or captcha, take a screenshot of that site and lodge a complaint.
Keep updating browser extensions and anti-phishing tools from time to time.
