InfoSecBulletin Cybersecurity for mankind
A new phishing kit called “Spiderman” poses a serious threat to European bank customers, allowing cybercriminals to easily generate realistic fake login pages for multiple banks.
The Spiderman phishing kit is notable for its all-in-one design, combining login templates for various European banks and cryptocurrency platforms into a single, easy-to-use interface.
LastPass says hackers stole customer data via Klue, supply chain breach
New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices
Spiderman offers attackers pre-made clones of major banks in five countries, such as Deutsche Bank, Commerzbank, ING, and CaixaBank, unlike traditional phishing kits that target specific institutions.
Security researchers found around 750 members in a Signal messenger group linked to the toolkit’s seller, showing its widespread use in the cybercriminal community.
Spiderman’s danger lies in its automation. Attackers don’t need web development skills or technical know-how to execute advanced phishing schemes.
The kit simplifies the process for criminals to choose a bank, create an exact copy of its login page, and launch phishing attacks quickly. The toolkit includes a control panel that tracks victim sessions in real time, collecting usernames, passwords, credit card details, PhotoTAN codes, and personal identification information.
Varonis reports that this multi-step method aims to evade European banking security, including two-factor authentication.
Spiderman uses advanced anti-detection features like country allow listing, ISP filtering, and device-type restrictions. These features allow attackers to bypass security scanners and automated detection tools by blocking traffic from data centers, VPNs, and research groups.
The kit now focuses on cryptocurrency users, including modules for extracting seed phrases from Ledger, MetaMask, and Exodus wallets, indicating a trend toward hybrid banking and crypto fraud.
