“On Lovable, attackers can use vibe coding to generate a faux captcha or phishing web page, whereas Netlify and Vercel make it easy to combine AI coding assistants within the CI/CD pipeline to churn out faux captcha pages,” mentioned Pattern Micro.
Aside from ease of deployment requiring minimal technical expertise, free internet hosting lowers the price of launching phishing operations. Additionally, with domains ending *.vercel.app or *.netlify.app, attackers additionally inherit credibility from the platform’s status, which the attackers can leverage.
“In contrast to conventional phishing pages, the AI-generated ones are a step up in velocity and scale moderately than utilizing some new technical trick,” mentioned Devroop Dhar, MD and co-founder at Primus Companions. “They’ll iterate and create brand-looking pages in a short time. Phishing websites used to take time to create, however now may be generated and cloned throughout many domains in minutes. That will increase the quantity of assaults and the possibility that an worker will see a convincing faux.”
