The Reveal Platform
Intel Name: Cybercriminals abuse ai website creation app for phishing
Date of Scan: August 25, 2025
Impact: High
Summary: Threat actors are increasingly leveraging an AI-powered website generation platform to create fraudulent websites used for credential phishing and malware distribution. These actors are building or duplicating sites that mimic well-known brands, incorporating CAPTCHA challenges to evade detection, and exfiltrating stolen credentials via Telegram. The entry barrier for cybercriminals has significantly dropped. One such tool, an AI-based website builder called Lovable, is being widely used by cybercriminals to host phishing, malware, and scam websites. Security teams have identified numerous campaigns utilizing Lovable to deploy multifactor authentication (MFA) phishing kits like Tycoon, distribute malware such as cryptocurrency wallet drainers and loaders, and launch phishing attacks aimed at harvesting credit card details and other personal information.
