Roblox phishing campaign

Intel Name: Roblox phishing campaign

Date of Scan: November 6, 2024

Impact: Medium

Summary:
A Roblox phishing campaign  has been targeting users through at least 19 active domains, some of which have been running for months or even years. These domains primarily use country code top-level domains (TLDs) and host phishing pages designed to steal Roblox login credentials. The pages incorporate fake captchas that appear only after users input their valid credentials, making the scam appear legitimate.

More Details