Cybercriminals are using Generative Artificial Intelligence (GenAI), specifically the v0.dev tool from Vercel, to create sophisticated phishing websites quickly and at scale. The tool allows attackers to quickly reproduce the design and branding of authentic login sites, often hosting visual assets such as company logos on Vercel’s infrastructure. The research revealed that attackers have used the Vercel platform to host phishing sites imitating not only Okta customers but also brands like Microsoft 365 and various cryptocurrency companies. Vercel responded by restricting access to suspect sites and working with Okta to improve reporting processes for additional phishing-related infrastructure. The report also noted the existence of several public GitHub repositories that replicate the v0.dev application, along with DIY guides enabling others to build their own generative phishing tools. Okta Threat Intelligence highlighted that traditional indicators of poor quality or imperfect design are insufficient for deterrence. To address these risks, Okta Threat Intelligence recommends enforcing phishing-resistant authentication policies, prioritizing the deactivation of less secure factors, restricting access to trusted devices, requiring secondary authentication if anomalous user behavior is detected, and updating security awareness training to account for AI-driven threats.