Hackers Exploit Webflow CDN and CAPTCHA to Bypass Security in Phishing Attacks

by Justin Erickson

Cybercriminals are abusing malicious PDFs hosted on Webflow’s Content Delivery Network (CDN) to steal credit card information. Once clicked, they are prompted to complete a CAPTCHA verification that has an embedded phishing link – redirecting them to the fraudulent website. This tactic allows phishing sites to remain undetected by unsuspecting users longer, as CAPTCHAs are generally seen as legitimate. This increases the likelihood of victims entering sensitive information. It is recommended that users verify URLs carefully and use browser-based security protections to detect fraudulent websites.