arrow_back
Back to Articles
"VoidProxy" PhishKit targets Google and Microsoft users - iTnews
Okta
September 12, 2025
high impact
VoidProxy PhishKit targets Google and Microsoft users with credential theft attacks VoidProxy is a sophisticated phishing toolkit designed to target Google and Microsoft users through credential harvesting attacks. The phishkit enables attackers to create convincing fake login pages that mimic legitimate Google and Microsoft authentication interfaces, allowing threat actors to steal user credentials at scale. This threat represents a significant risk to enterprise security, particularly for organizations relying on cloud services. The toolkit's accessibility and ease of use make it a concerning development in the phishing landscape, as it lowers the barrier to entry for cybercriminals conducting large-scale credential theft campaigns.
Key Takeaways
- arrow_right_alt VoidProxy is a phishing toolkit specifically designed to target Google and Microsoft user credentials
- arrow_right_alt The toolkit enables creation of convincing fake authentication pages to harvest login information
- arrow_right_alt Threat actors can deploy large-scale phishing campaigns with minimal technical expertise using this tool
- arrow_right_alt Organizations using Google and Microsoft cloud services face elevated credential theft risks