SEAL team develops ‘verifiable phishing reports’ to fight scammers

The Security Alliance has introduced a tool known as the ‘TLS Attestations and Verifiable Phishing Reports’ system to enhance the verification of crypto phishing attacks. With over $400 million stolen in the first half of 2025 due to scamming activities, the need for effective security measures has escalated. Cybersecurity researchers often face difficulties replicating user experiences with potential phishing links due to advanced cloaking techniques used by attackers. The new system acts as a cryptographic oracle during TLS connections, allowing users to run a local HTTP proxy to intercept and analyze connections to suspect websites. This process captures connection details and sends them to a trusted attestation server, which performs encryption and decryption operations. The resulting ‘Verifiable Phishing Reports’ provide cryptographically signed proofs of what content is served by a given website, enabling users to identify phishing content without directly accessing the malicious sites. This tool is specifically designed for advanced users and security researchers to enhance collaboration against phishing threats.

Source 🔗