Recent research by Infoblox has revealed a staggering 236,000 websites utilizing templates from the DCloud Uni-App framework for a variety of scams, including fraudulent cryptocurrency exchanges and phishing schemes. These websites are not only impersonating legitimate brands but also engaging in sophisticated operations like multi-language pig-butchering and fake gambling platforms. This highlights a concerning trend where legitimate tools are being exploited to facilitate a wide range of cybercrimes, potentially impacting countless victims worldwide.
For businesses, particularly those operating within the financial and tech sectors, this finding underscores the necessity for heightened vigilance against phishing and scam attempts. The exploitation of legitimate frameworks like DCloud Uni-App illustrates a critical shift in the landscape of cyber threats, where attackers leverage trusted technologies to deceive users. Companies must enhance their cybersecurity protocols, including employee training and advanced threat detection systems, to mitigate the risks posed by such fraudulent activities. This situation serves as a stark reminder of the importance of not only securing organizational assets but also actively monitoring for signs of impersonation and scam-related activities, as the boundaries of cybersecurity continue to evolve rapidly.
---
*Originally reported by [The Hacker News](https://thehackernews.com/2026/06/236000-dcloud-uni-app-sites-used-in.html)*