CloudSEK: Webwyrm - A Vast Network of Deception by Impersonating Thousands of Brands

Published on

A global scale scam nicknamed ‘Webwyrm’ (pronounced ‘web-worm’) has claimed more than 100,000 victims across over 50 countries globally. By impersonating over 1000 companies across 10 industries, threat actors are causing collective personal losses of possibly over a 100 million dollars. The detailed whitepaper delves into the scale of the scams and the TTPs (Targets, Techniques, and Procedures) employed which show a highly skilled and persistent Threat Actor (TA) group who have been using effective OpSec (Operational Security) tactics.