DCloud Uni-App Framework Fuels Global Scam Network with 236,000+ Domains

The DCloud Uni-App framework, originally intended for legitimate app development, has been exploited by cybercriminals to create a vast network of scams, including over 236,000 distinct fraudulent domains. These scams encompass fake crypto exchanges, phishing sites, and investment traps, affecting numerous organizations across various sectors. Infoblox Threat Intel reported over five million attempts to connect to these scam sites from 985 organizations in 25 industries. The operations have expanded to include physical-world fraud schemes, with new brands emerging to replace those shut down by authorities. The scale of this operation highlights a shift in consumer fraud, now impacting business networks and raising concerns at the board level. Security professionals are urged to recognize the growing threat as traditional phishing training may not suffice to address these new risks.

Key Points: • DCloud Uni-App powers over 236,000 scam domains linked to various fraudulent activities. • More than five million connection attempts to these scams were recorded from 985 organizations. • Consumer scams are increasingly infiltrating workplace networks, posing significant risks.