A new phishing-as-a-service operation named 'Darcula' is targeting victims worldwide through various tactics, including spearphishing campaigns via iMessage and RCS. The cybercriminals behind Darcula are impersonating legitimate organizations like postal services and airlines to steal sensitive information from individuals, including tech professionals and iPhone users. The operation has been successful in evading detection and has been particularly active in targeting postal organizations in over 100 countries, including the United States Postal Service.