A legitimate cross-platform development framework is being reused as a fast-moving scaffold for phishing pages that imitate crypto, mobility, and messaging brands.
Chinese-language phishing operations are reportedly leaning on RCS and iMessage to deliver credential theft lures inside trusted messaging apps, where SMS-era defenses are weaker.
RCS and iMessage can carry the same old scam with less carrier visibility, pushing defenders away from SMS-era controls and toward device-side and user-side detection.