Immunity Evasion: Defeating Security with Active Measures & Long-Lived Domains
In Q1 2025, Cofense Intelligence identified a sophisticated phishing tactic combining long-lived domains, custom CAPTCHAs, and anti-automated analysis to bypass SEGs. This combination allows threat actors to evade detection by replacing malicious content with benign pages for scanning software and leveraging CAPTCHAs that security systems cannot easily solve.
