Chinese Phishers Use Live MFA Interception for Digital Wallet Fraud

Thursday, May 28, 2026 at 01:00 AM UTC·Source: Bank Info Security

Updated: Thursday, May 28, 2026 at 01:00 AM UTC

Executive Summary

Analysis

Fraudsters Tokenize Stolen Cards Into Attacker Wallets Google Threat Intelligence Group warned that Chinese-language phishing-as-a-service platforms are using AI, encrypted messaging and real-time OTP interception to bypass multifactor authentication and provision stolen payment cards into attacker-controlled digital wallets worldwide.

Indicators of Compromise (2)

URL (1)

https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/chinese-phishers-use-live-mfa-interception-for-digital-wallet-fraud-image_small-8-a-31799.jpg

VirusTotal URLhaus

Domain (1)

ismg-cdn.nyc3.cdn.digitaloceanspaces.com

VirusTotal URLhaus

Source Attribution

Originally published by Bank Info Security on May 28, 2026.

Related Threats

MEDIUMPhishing

Silent Ransom Group Impersonating IT Personnel through Social Engineering

The FBI has issued a Flash Alert about the Silent Ransom Group. Summary The Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using social engineering techniques. Through phone calls and phishing emails, SRG actors pose as IT support to establish access to victim computers and exfiltrate... Source

22h agoDataBreaches.net

MEDIUMPhishing

Thousands of Fake FIFA Domains Target World Cup Fans

Group-IB uncovered Ghost Stadium phishing and 4300 fake FIFA World Cup domains targeting fans

1d agoInfosecurity Magazine

MEDIUMPhishing

The Credential Crisis: How Stolen Credentials Defeat Modern Security

As AI accelerates phishing, session hijacking, and credential abuse, security teams are racing to close the gap between attacker speed and defensive response. The post The Credential Crisis: How Stolen Credentials Defeat Modern Security appeared first on SecurityWeek .

1d agoSecurityWeek