In August 2023, CERT Poland observed a phishing campaign that collected credentials from 68k victims. The campaign collected email addresses and passwords via a phishing email masquerading as a purchase order confirmation. CERT Poland identified a further 202 other phishing campaigns operating on the same C2 server, which has now been dismantled.



Source: HaveIBeenpwned
Source Link: https://haveibeenpwned.com/PwnedWebsites#CERTPolandPhish