Unveiling “Lucid” – A Silent Enabler of Financial Fraud
Lucid is a rising but under-the-radar Phishing-as-a-Service (PhaaS) platform that’s quietly fueling large-scale financial fraud across the globe. Built by Chinese-speaking threat actors, it supports phishing campaigns targeting over 200 organizations in 80+ countries, enabling cybercriminals to steal payment card data with ease.
The group stands out for its automated infrastructure, customizable phishing templates, and clever use of iMessage and RCS to bypass spam filters and increase victim engagement. It also employs advanced evasion tactics to keep its phishing sites running longer and even includes a card generator to validate stolen data. As PhaaS platforms evolve, Lucid is a key example of how these tools are scaling fraud operations worldwide—making it a serious concern for financial institutions and security teams.
Throughout our presentation, we would like to share exclusive details related to the infrastructure, TTP and MO of this high-profile actor.
