Netskope reports on phishing threats, leadership, and SSE recognition - May 2025

Netskope reported a significant increase in phishing activity, particularly targeting Navy Federal Credit Union members. Over 830 organizations and approximately 3,000 users have been affected during the reported campaigns from January to April 2025, with phishing pages prominently hosted on the Glitch platform.

During this period, phishing sites on Glitch saw traffic triple. Many of the campaigns aimed at collecting sensitive login credentials leveraged Telegram for data exfiltration, bypassing Multifactor Authentication (MFA) protocols. Additionally, custom CAPTCHA tests created complications for detection efforts, obstructing static scanners.

Netskope highlighted that the Glitch platform allows users to quickly create and host phishing websites with unique subdomains, facilitating operational anonymity. Attackers focused on capturing usernames and passwords from Navy Federal Credit Union account holders and utilized JavaScript to gather additional user information such as Internet Protocol locations.

Moreover, some phishing campaigns employed fake CAPTCHAs to mask malicious intent, tricking victims into providing sensitive information. Netskope noted that these tactics exploit Telegram to gather stolen credentials effectively while integrating fake confirmations to mislead victims into believing their actions were legitimate.

In another report, Netskope explored the evolving landscape of business technology leadership. The focus shifted towards adaptability, relationship-building, and integrating security into decision-making. With the influence of Artificial Intelligence (AI) and cloud operations, technology leaders are encouraged to foster trust and engage in their environments, making security a shared responsibility among all stakeholders.

Netskope also received recognition as a Leader in the Gartner Magic Quadrant for Security Service Edge for the fourth consecutive year. It secured first place in three use cases and second in three more, emphasizing its consistent performance. Netskope's architecture is seen as a key factor, promoting a seamless integration of security capabilities while maximizing customer experience.

Lastly, Netskope outlined the importance of a robust Data Loss Prevention (DLP) strategy in addressing evolving cybersecurity threats. Companies were advised to implement comprehensive DLP solutions that provide continuous monitoring and enforcement to protect sensitive data amid shifting regulatory landscapes.

1. Netskope Highlights Phishing Threats on Glitch
   Attackers exploit Telegram to bypass MFA and collect sensitive information through phishing sites hosted on Glitch.
2. Netskope explores the future of business technology leadership
   Business technology leaders must prioritize relationship-building, adaptability, and security in their evolving roles.
3. Netskope named a Leader in Gartner Security Services Edge (SSE) report
   In the latest Gartner Critical Capabilities for SSE report, Netskope ranked first in three use cases and second in three others.
4. Netskope outlines the importance of a unified DLP strategy
   A robust DLP approach is essential for companies to manage sensitive data amid evolving privacy regulations and technologies.
5. Netskope integrates One Gateway with Google Cloud Wide Area Network (WAN)
   By partnering with Google Cloud, Netskope aims to streamline operations and modernize network infrastructure.
6. Netskope coverage of Scattered Spider's tactics
   Active since 2022, Scattered Spider utilizes sophisticated social engineering strategies to compromise organizations across multiple sectors.