Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Phishing-as-a-Service PhaaS rents ready-made phishing kits and infrastructure, lowering the bar for campaigns and often bypassing MFA via AiTM.
Phishing-as-a-Service PhaaS Definition: Phishing-as-a-Service PhaaS rents ready-made phishing kits and infrastructure, lowering the bar for campaigns and often bypassing MFA via AiTM.
Phishing-as-a-Service PhaaS is a cybercrime business model in which operators sell or rent ready-made phishing kits, hosting, templates, and adversary-in-the-middle infrastructure to subscribers, lowering the technical barrier to launching campaigns. Modern PhaaS platforms such as those offering reverse-proxy phishing can capture credentials and session cookies to bypass multi-factor authentication, sometimes packaged as turnkey subscription services.
Phishing-as-a-Service PhaaS is one of the topics you'll master in the Security+ Boot Camp.
Security+ Boot Camp →