Massive leak of over 115 million US payment cards caused by Chinese "smishing" hackers - find out if you're affected

• Phishing attacks now bypass multi-factor authentication using real-time digital wallet provisioning tactics
• One-time passcodes are no longer enough to stop fraudsters with mobile-optimized phishing kits
• Millions of victims were targeted using everyday alerts like tolls, packages, and account notices

A wave of advanced phishing campaigns, traced to Chinese-speaking cybercriminal syndicates, may have compromised up to 115 million US payment cards in just over a year, experts have warned.

Researchers at SecAlliance revealed these operations represent a growing convergence of social engineering, real-time authentication bypasses, and phishing infrastructure designed to scale.

Investigators have identified a figure referred to as “Lao Wang” as the original creator of a now widely adopted platform that facilitates mobile-based credential harvesting.