Phishing has always been about deceiving people. But in this campaign, Discovers something new.
The attackers were not only targeting users, but they also attempted to manipulate AI-based defenses.
That campaign relied on urgency, redirects, and a credential-harvesting site.
This one keeps the same delivery chain but introduces something different, hidden AI prompts inside the email designed to confuse automated analysis.
The Symania Way:
Symania protects against this phishing risk that aim to the user and the AI defenses by using a true passwordless, phishing-resistant method.
Users never enter a password, or any other keys/codes and attackers can’t replicate Symania’s protected flow, fake login pages and AI-targeted phishing emails can’t capture usable credentials or complete authentication.
Symania also uses a SSO flow that only works through its verified dashboard, combined with a secret symbol-and-sequence interaction and device/context validation.
As much as the AI defense system was deceived it will not make any difference because of the above.
