← Back to all writing
Threat Intelligence

Phishing Just Got Smarter.

We are officially in the era of Industrialized Phishing.

If your security awareness training is still telling employees to "look for bad grammar" or "suspicious sender addresses," you might be fighting a 2020 battle in 2026.

Here is the reality of the threat landscape this month:

The New Players: InboxPrime AI & BlackForce

Two new phishing kits—InboxPrime AI and BlackForce—have been dominating the headlines this December. These aren't just "fake login pages." They are sophisticated software platforms that anyone can buy.

The Innovation (Why it’s scary)

The barrier to entry has collapsed.

The Bypass: Man-in-the-Browser

This is the most critical part to understand. Modern kits like BlackForce use "Man-in-the-Browser" (MitB) or "Adversary-in-the-Middle" tactics.

How it works (Simply):

  1. You click a link and see a perfect replica of your login page.
  2. You type your password and MFA code.
  3. The attacker’s server acts as a "bridge," instantly passing your real code to the real website.
  4. Result: You get logged in, but the attacker also gets a session token. They bypassed your MFA without you ever knowing.

The Defense: What Actually Works?

We need to be honest with our users: Human detection is failing.