The Automated Threat: When Phishing Becomes a Service
We have officially crossed a line. If you thought phishing was still about spotty grammar and obvious fake emails from distant royalty, this week’s 123rd edition of HX Weekly is here to shatter that illusion.
We are watching a structural shift in how cybercrime operates. Thanks to rapid advancements in artificial intelligence, phishing has transformed from a manual craft into a highly automated, commercialized industry: Phishing-as-a-Service (PaaS).
The Corporate Bombardment
The headline warning this week centers directly on the tools most of us use to get work done every single day. The FBI has issued an urgent warning that Microsoft 365 services are being aggressively bombarded with sophisticated phishing emails.
- Token Hijacking: A new Phishing-as-a-Service kit named Kali365 is actively making the rounds. Instead of just stealing passwords, it is designed to hijack Microsoft 365 access tokens, effectively bypassing traditional login security.
- Live Interception: Moving away from static, easily detectable fake landing pages, Chinese threat actors are now deploying live credential interception tactics to catch your data in real-time.
- The No-Code Malware Surge: The democratization of technology cuts both ways. Just as developers love no-code tools, so do criminals. The BTMOB Android RAT (Remote Access Trojan) is currently spreading through no-code builder tooling, meaning attackers can now build highly dangerous mobile malware without writing a single line of code.
Exploiting Global Fandoms
Cybercriminals are also hyper-focused on major cultural milestones. Fraudsters are actively targeting Formula 1 fans with complex networks of fake streams, counterfeit merchandise, and ticket scams.
Worse yet, a massive Chinese-speaking fraud gang has been detected spinning up operations to steal millions from unsuspecting fans ahead of the 2026 World Cup. If an offer to see your favorite team or driver seems too good to be true, your cyber intuition should be screaming.
The AI Double-Edged Sword
While it might feel like AI is exclusively favoring the bad guys—especially with news that AI-assisted exploit development is outpacing traditional security scanner detection—the defense side is pushing back hard.
The Power of Defense: Anthropic’s Claude Mythos AI recently analyzed widely used software and successfully discovered 10,000 high-severity flaws, allowing developers to patch them before criminals could weaponize them.
Yet, as UK cyberspying chiefs call AI “an unstoppable force,” societal friction is mounting. US law enforcement has officially warned of a rise in “anti-tech extremism” as public anxiety and anger over rapid AI proliferation grow.
What Now? Becoming “Cyber Smart”
When threat actors can buy automated phishing kits off the shelf and generate malware with no-code tools, relying on basic common sense isn’t enough. You need an active digital defense framework.
- Practice Extreme Zero Trust: The FBI warns that cybercriminals are actively impersonating internal IT personnel. Never assume an urgent technical request from “inside your company” is legitimate without secondary verification.
- Protect Access Tokens: Be incredibly cautious about clicking links that ask you to re-authenticate or sign into your Microsoft 365 account unexpectedly.
- Stay Accountable: Keeping your cyber hygiene sharp requires a steady drumbeat of reminders. Subscribe to at least one dedicated cybersecurity publication to keep yourself on your toes.
Inside Hexagon: Stepping Into Year Three
This coming week marks a profound milestone for us: Hexagon Center is entering its third year.
We have come an incredibly long way, developing a robust ecosystem of programs to directly support individuals, families, and organizations navigating the aftermath of data breaches, devastating digital scams, and cyberattacks.
We cannot fight this battle in isolation. If you have friends, colleagues, or loved ones who don’t know about Hexagon Center, it is your responsibility to pull them into the fold. Share our resources, pass along our PSAs, and help us give everyone the tools they need to protect their smart devices and their digital lives.
Thank you for standing with us for three years. Let’s keep each other safe.
— The HX Weekly Team