Malicious websites created with Sniper Dz have been given custom links and obscured by the legitimate proxymesh[.]com server, which has been configured to facilitate automated phishing content loading without direct communications in a bid to prevent detection of the PhaaS platform's backend servers.
Article Link: Sniper Dz PhaaS platform extensively leveraged in cyberattacks | SC Media