CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Spiderman Phishing Kit Targets European Banks and Cryptocurrency Services

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A new phishing kit named Spiderman is targeting customers of numerous European banks and cryptocurrency services. The kit creates pixel-perfect replicas of legitimate sites to capture login credentials, 2FA codes, and credit card data. It is modular, allowing for the addition of new banks, portals, and authentication methods. The kit is popular among cybercriminals, with one of its groups on Signal counting 750 members. The Spiderman phishing kit targets financial institutions in five countries, including major brands such as Deutsche Bank, ING, Comdirect, Blau, O2, CaixaBank, Volksbank, and Commerzbank. It can also steal seed phrases for Ledger, Metamask, and Exodus cryptocurrency wallets. The kit allows operators to view victim sessions in real time, capture credentials, perform one-click data export, intercept PhotoTAN/OTP codes, and harvest credit card details. Varonis researchers warn that the data captured by Spiderman can lead to banking account takeover, SIM swapping, credit card fraud, and identity theft.

Timeline

  1. 10.12.2025 16:53 1 articles · 9h ago

    Spiderman Phishing Kit Targets European Banks and Cryptocurrency Services

    A new phishing kit named Spiderman is targeting customers of numerous European banks and cryptocurrency services. The kit creates pixel-perfect replicas of legitimate sites to capture login credentials, 2FA codes, and credit card data. It is modular, allowing for the addition of new banks, portals, and authentication methods. The kit is popular among cybercriminals, with one of its groups on Signal counting 750 members. The Spiderman phishing kit targets financial institutions in five countries, including major brands such as Deutsche Bank, ING, Comdirect, Blau, O2, CaixaBank, Volksbank, and Commerzbank. It can also steal seed phrases for Ledger, Metamask, and Exodus cryptocurrency wallets. The kit allows operators to view victim sessions in real time, capture credentials, perform one-click data export, intercept PhotoTAN/OTP codes, and harvest credit card details. Varonis researchers warn that the data captured by Spiderman can lead to banking account takeover, SIM swapping, credit card fraud, and identity theft.

    Show sources
    Open in new tab

Information Snippets

  • The Spiderman phishing kit targets financial institutions in five countries, including major brands such as Deutsche Bank, ING, Comdirect, Blau, O2, CaixaBank, Volksbank, and Commerzbank.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources

  • The kit can create phishing pages for online portals of fintech companies, such as Klarna and PayPal, and steal seed phrases for Ledger, Metamask, and Exodus cryptocurrency wallets.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources

  • The Spiderman phishing kit is modular, allowing for the addition of new banks, portals, and authentication methods.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources

  • The kit allows operators to view victim sessions in real time, capture credentials, perform one-click data export, intercept PhotoTAN/OTP codes, and harvest credit card details.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources

  • The Spiderman phishing kit is popular among cybercriminals, with one of its groups on Signal counting 750 members.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources

  • Varonis researchers warn that the data captured by Spiderman can lead to banking account takeover, SIM swapping, credit card fraud, and identity theft.

    First reported: 10.12.2025 16:53
    1 source, 1 article
    Show sources