Twilio

Incidents implicated systems

Incident 10162 Report
Jailbroken Lovable AI Allegedly Used to Generate and Host Phishing Pages, Steal Credentials, and Bypass Security

2025-04-09

The generative AI platform Lovable, which is used for building web apps, was reportedly jailbroken to create and host full phishing campaigns. These campaigns allegedly included credential-harvesting login pages, evasion techniques, and real-time exfiltration via services like Telegram and Firebase. The AI system was reportedly used for generating the phishing content and and then deploying it live on a URL hosted under its own subdomain.

Twilio

Incidents implicated systems

Incident 10162 ReportJailbroken Lovable AI Allegedly Used to Generate and Host Phishing Pages, Steal Credentials, and Bypass Security

Related Entities Related EntitiesOther entities that are related to the same incident. For example, if the developer of an incident is this entity but the deployer is another entity, they are marked as related entities.

Related Entities

Unknown actors

Incidents involved as Deployer

Cyber criminals

Incidents involved as Deployer

Cyber criminal networks

Incidents involved as Deployer

Loveable AI

Incidents involved as Developer

General public

Incidents Harmed By

Users targeted by phishing attacks

Incidents Harmed By

Impersonated organizations

Incidents Harmed By

Microsoft

Incidents Harmed By

Lovable AI

Incidents implicated systems

Firebase

Incidents implicated systems

RequestBin

Incidents implicated systems

JSONBin

Incidents implicated systems

Telegram

Incidents implicated systems

Office.com

Incidents implicated systems

Microsoft login systems

Incidents implicated systems

Incident 10162 Report
Jailbroken Lovable AI Allegedly Used to Generate and Host Phishing Pages, Steal Credentials, and Bypass Security

Related Entities