Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Brazilian government lookalike AI-phishing campaign

Campaign
First reported
Last updated
Happening score
H score 35
1 unique sources, 1 articles

Summary

Hide ▲

A financially motivated phishing campaign is now using DeepSite AI and BlackBox AI to build fake Brazilian government portals, making the fraud more scalable and harder to spot. The lookalike pages impersonate Brazil's State Department of Traffic and the Ministry of Education to trick users into sharing personal data and sending PIX payments. SEO poisoning helps the fraudulent sites surface in search results, increasing the chance that victims reach them before legitimate services.

Related Happenings

SEO-poisoning fake software site campaign targeting Chinese-speaking users

Campaign
First: 15.09.2025 08:47 Last: 15.09.2025 08:47 Sources 1

About this happening: The **SEO-poisoning campaign** is steering **Chinese-speaking users** searching for software downloads toward **fake software sites**, raising the risk of malware infection. It us...

Open Happening

Timeline

  1. 08.08.2025 19:14 1 articles · 9mo ago

    Brazilian government lookalike phishing campaign

    Initial Disclosure

    A financially motivated phishing campaign uses DeepSite AI and BlackBox AI to build replica pages that mimic Brazil's State Department of Traffic and Ministry of Education, then boosts the fraudulent sites with SEO poisoning to draw victims into submitting CPF numbers, residential addresses, and PIX payments of 87.40 reals ($16) under the guise of a psychometric or medical exam or a job offer. The phishing pages also use staged data collection and a threat-actor-registered API to validate CPF numbers and prefill victim details, increasing the credibility of the fraud.

    Show sources
    Open in new tab