Case Studies

AI-Powered Tender MatchingProduct Engineering
AI-Driven In-Store Operations IntelligenceAI & Automation
AI-Powered Industrial Quality ControlAI & Automation

View All Case Studies

AI Agent Tools Exploited to Build Phishing Sites, Warns Okta

Security experts are raising red flags over how AI Agent tools, especially GenAI platforms like v0.dev, increasingly used to create sophisticated phishing websites. According to a recent report from identity management firm Okta, attackers are leveraging Vercel’s v0.dev platform to generate fraudulent sign-in pages that closely mimic legitimate services like Microsoft 365 and cryptocurrency platforms. These phishing sites hostd on Vercel infrastructure, making them appear more credible to unsuspecting users.

The v0.dev tool enables users to design functional web interfaces using natural language prompts, effectively lowering the technical barrier for cybercriminals. Okta researchers successfully replicated this technique to confirm its feasibility. Highlighting the growing cybersecurity challenge posed by open-access AI Agent technology.

Key findings include:

AI Agent misuse is simplifying the creation of phishing pages, with threat actors mimicking company logos and UI elements to increase authenticity.

Phishing infrastructure is being hosted on reputable platforms like Vercel to avoid early detection.

Open-source guides and clones of v0.dev on GitHub are expanding access for inexperienced attackers.

Approximately one-third of GenAI chatbot responses containing login URLs founded to be false, contributing to domain spoofing risks.

To combat these threats, Okta recommends enabling multi-factor authentication (MFA), binding authenticators to verified domains via tools. Updating security awareness training to reflect the sophistication of AI-generated phishing attempts.

This development underscores the dual-edged nature of AI Agent tools—while powerful for innovation, they also pose novel security risks. As GenAI becomes more widespread, enterprises must adopt proactive security strategies. That will protect against automated social engineering and phishing campaigns developed using AI.

Source:

https://www.techradar.com/pro/security/experts-warn-this-top-genai-tool-is-being-used-to-build-phishing-websites

Get Started

Ready to Build Your Next Product?

Start with a 30-min discovery call. We'll map your technical landscape and recommend an engineering approach.

000 +

Engineers

Full-stack, AI/ML, and domain specialists

00 %

Client Retention

Multi-year partnerships with global enterprises

0 -wk

Avg Ramp

Full team deployed and productive