Ethical Hacking News
A new AITM phishing wave has been discovered targeting TikTok Business accounts, highlighting the growing sophistication and adaptability of cyber attackers. The campaign uses trusted branding, redirects, and layered deception to increase success rates and harvest credentials for further abuse. Organizations must take immediate action to protect themselves against these types of attacks.
AI TM phishing campaigns targeting TikTok Business accounts have been on the rise, with recent reports highlighting a new wave of attacks. The attackers use fake pages hosted on Cloudflare to serve malicious services and evade detection using bot protection. The campaign targets users who log in to their TikTok accounts using Google, making a single compromise expose both accounts to broader abuse. Organizations must take immediate action to protect themselves against these types of attacks, including implementing robust security measures and verifying email authenticity. Staying informed about the latest threats and vulnerabilities is crucial for businesses and individuals alike, as seen in recent warnings from CISA and BSI.
AI TM phishing campaigns have been a growing concern for cybersecurity experts and organizations alike, and recent reports have highlighted the latest wave of attacks that target TikTok Business accounts. The campaign, which has been discovered by Push Security researchers, is an advanced social engineering tactic that aims to hijack business accounts for malicious purposes.
The attackers behind this campaign are using newly registered domains created within seconds and hosted on Cloudflare to serve fake pages that mimic legitimate services. The pages redirect victims from legitimate services before loading fake TikTok or Google-themed "Schedule a call" pages, which in turn lead to AITM phishing pages powered by phishing kits. The campaign uses bot protection to evade detection and is likely spread via targeted emails.
This latest wave of attacks on TikTok Business accounts follows previous campaigns that have targeted Google and Microsoft platforms. However, the use of TikTok as a target is becoming increasingly common, highlighting the growing sophistication and adaptability of cyber attackers.
By combining trusted branding, redirects, and layered deception, attackers increase success rates and harvest credentials for further abuse, including account takeover and fraud. This is particularly concerning given that many users log in to their TikTok accounts using Google, making a single compromise expose both accounts to broader abuse such as ad fraud, data theft, and access to other connected services.
In light of this latest report, organizations must take immediate action to protect themselves against these types of attacks. This includes ensuring that all employees are aware of the risks associated with AITM phishing campaigns and the importance of verifying the authenticity of emails before opening them.
Additionally, businesses should prioritize securing their online presence by implementing robust security measures, such as two-factor authentication, regular software updates, and implementing a robust incident response plan to minimize the impact of a potential attack.
The use of cloud-based services like Cloudflare can help reduce the risk of attacks, but it is not foolproof. Organizations must remain vigilant and continually monitor their online presence for signs of suspicious activity.
Furthermore, this campaign highlights the importance of staying informed about the latest threats and vulnerabilities in the cybersecurity landscape. CISA and BSI have already warned organizations about critical PTC Windchill and FlexPLM flaws, which can be exploited by attackers to gain access to sensitive data.
As a result, it is essential for businesses and individuals alike to prioritize their online security and stay up-to-date with the latest threat intelligence and vulnerability reports. By taking proactive steps to protect themselves against these types of attacks, organizations can reduce their risk exposure and minimize the impact of potential cyber incidents.
In conclusion, this AITM phishing campaign targeting TikTok Business accounts is a growing concern for cybersecurity experts and organizations alike. The use of trusted branding, redirects, and layered deception by attackers increases success rates and harvests credentials for further abuse. As such, it is crucial that businesses prioritize their online security, stay informed about the latest threats, and take proactive steps to protect themselves against these types of attacks.
Related Information:
https://www.ethicalhackingnews.com/articles/New-AITM-Phishing-Campaign-Hijacks-TikTok-Business-Accounts-A-Growing-Concern-for-Cybersecurity-ehn.shtml
https://securityaffairs.com/190058/security/new-aitm-phishing-wave-hijacks-tiktok-business-accounts.html
https://thehackernews.com/2026/03/aitm-phishing-targets-tiktok-business.html
https://www.infosecurity-magazine.com/news/phishing-targets-tiktok-for/
Published: Fri Mar 27 13:45:28 2026 by llama3.2 3B Q4_K_M
