Intel Name: Roblox phishing campaign
Date of Scan: November 6, 2024
Impact: Medium
Summary: A Roblox phishing campaign has been targeting users through at least 19 active domains, some of which have been running for months or even years. These domains primarily use country code top-level domains (TLDs) and host phishing pages designed to steal Roblox login credentials. The pages incorporate fake captchas that appear only after users input their valid credentials, making the scam appear legitimate.