Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Smishing Triad Lighthouse SMS phishing campaign targeting mobile users

Campaign
First reported
Last updated
Happening score
H score 33
2 unique sources, 2 articles

Summary

Hide ▲

The Smishing Triad is running a large-scale SMS phishing campaign through Lighthouse, using trusted-brand impersonation to reach millions of text messages and more than a million victims across 120 countries. The operation matters because it turns simple text lures into repeatable theft of payment card data and follow-on monetization through mobile wallets. The same infrastructure is also being used for fake e-commerce lures, broadening the scam’s reach and staying power.

Related Happenings

NGate Android Brazil fake-app and fake-lottery campaign

Campaign
First: 21.04.2026 12:00 Last: 21.04.2026 12:00 Sources 1

About this happening: A **NGate** campaign has been active since **November 2025**, targeting primarily **Android devices in Brazil** and using **fake-app** and **fake-lottery** lures to spread a malic...

Open Happening

Signal phishing campaign targeting senior figures in Germany and Europe

Campaign
First: 06.02.2026 22:00 Last: 06.02.2026 22:00 Sources 1

About this happening: A **Signal phishing campaign** is targeting **senior figures in Germany and across Europe**, seeking access to **one-to-one and group chats** plus **contact lists**. The operation...

Open Happening

AI-assisted Truman Show investment fraud campaign

Campaign
First: 09.01.2026 13:00 Last: 09.01.2026 13:00 Sources 1

About this happening: The **Truman Show** operation is an **AI-assisted investment fraud campaign** that uses **fake personas** and **attacker-controlled infrastructure** to lure victims into crypto sc...

Open Happening

PayPal Subscriptions fake purchase email scam campaign

Campaign
First: 14.12.2025 18:06 Last: 14.12.2025 18:06 Sources 1

About this happening: The **PayPal Subscriptions** email scam is **abusing legitimate PayPal mail** to deliver **fake purchase notifications**, increasing the chance that messages evade filtering and r...

Open Happening

China-based smishing and fake e-commerce phishing campaign

Campaign
First: 05.12.2025 01:02 Last: 05.12.2025 01:02 Sources 1

About this happening: A **China-based phishing campaign** has escalated into mass-registered scam domains and **SMS lures** for rewards points, tax refunds, and fake retail deals, increasing risk for *...

Open Happening

Timeline

  1. 14.11.2025 11:45 1 articles · 6mo ago

    Lighthouse campaign drove 32,094 USPS phishing sites

    Campaign Scope Update

    Google said Lighthouse, the phishing-as-a-service kit linked to the Smishing Triad, was used to launch 32,094 distinct US Postal Service (USPS) phishing websites from July 2023 through October 2024, and that at least 116 templates featured Google logos or branding while the operation targeted over one million people in over 121 countries.

    Show sources
    Open in new tab
  2. 13.11.2025 16:47 1 articles · 6mo ago

    Google files lawsuit against 25 John Doe defendants tied to Lighthouse

    Legal Policy Action Update

    Google filed a lawsuit in the Southern District of New York on November 12, 2025, seeking to unmask and disrupt 25 John Doe defendants allegedly linked to Lighthouse, a China-based phishing-as-a-service kit associated with the Smishing Triad. The filing says Lighthouse is used to spoof trusted brands through SMS lures, mass-create fake e-commerce websites, capture payment card data, and push victims into enrolling cards into Apple and Google mobile wallets, with more than a million victims harmed across 120 countries.

    Show sources
    Open in new tab