In recent news, Labhost service has emerged as a key tool for cybercriminals targeting North American banks, especially Canadian financial institutions. This phishing service, known as PHAAS (Phishing-As-A-Service), equips attackers with a range of tools to carry out phishing attacks. These tools include pre-made sets, infrastructure for hosting fraudulent pages, and email creation tools.
While Labhost has been known in the cybersecurity world, its popularity surged after the introduction of specialized phishing sets aimed at Canadian banks in the first half of 2023. According to research organization Fortra, Labhost now leads the PHAAS platforms, surpassing others like the Frappo phishing service and being responsible for a majority of attacks on Canadian bank customers.
Despite facing a significant setback in October 2023, Labhost quickly recovered and continued its operations, conducting hundreds of attacks each month. The service offers three pricing plans – standard for $179 per month, premium for $249 per month, and world for $300 per month, each tailored to different regions and targeted institutions, including US banks and 70 institutions globally.
Labhost also provides cybercriminals with the Labrat tool, allowing them to bypass two-factor authentication (2FA) and manage phishing attacks in real-time. Additionally, the service offers Labsend SMS-SPAM tool to automate SMS phishing campaigns, sending messages with links to phishing pages and responding automatically to victims.
The rise of PHAAS platforms like Labhost has made cybercriminal activities more accessible to a wider range of individuals, including inexperienced hackers, posing a significant cybersecurity threat globally. Other notable platforms causing concern among researchers include Caffeine and Robin Banks, offering advanced features to bypass multi-factor authentication and customizable phishing sets.