The CSIRT (Computer Security Incident Response Team) of the Scientific and Academic Computer Network (NASK) announced on Tuesday that it had observed a new phishing campaign aimed at obtaining login data for the portal, reports .
Cybercriminals impersonate Facebook. They want to steal your data
Fraudsters send messages via . “The message contains a request for help in winning the competition. At the end of the message there is a link leading to an alleged vote, which in fact redirects to a page impersonating Facebook. The login details entered there are visible to criminals and can be used to take over victim’s social media account.
If your login details are phishing, change your passwords immediately. Experts recommend that you enable two-factor authentication, log out all active sessions in your account, and check that they have not been connected to an unknown account.
Scammers impersonate the Ministry of Finance. They encourage you to fill out the form, they tempt you with a “one-time benefit”
On Monday, the CSIRT team warned against cybercriminals who use the image of the Ministry of Finance and inform about the alleged possibility of obtaining a one-time financial benefit for Polish citizens. “They are actually trying to phish online banking passwords and personal information” – .
prepared a fake website, impersonating the Ministry of Finance, on which they posted a false regulation and argue that in order to receive a financial benefit, a special online form must be completed. After completing and submitting the completed form, in which you must provide, among others: name, surname and PESEL, a message is displayed about its successful completion and a request to wait for further instructions that will be delivered in an e-mail or SMS.
More about scams
“After completing the form, cybercriminals have all the contact details to which they send an SMS message: ‘Application for PLN 3,010 confirmed’. In the content of the message, the fraudsters contain information about the amount of the benefit granted and a link to the page impersonating the bank of the potential victim,” we read. Experts warn not to click on the link.
The rest of the scam is similar to previous phishing campaigns – cybercriminals take over login details for online banking. After selecting the payment method, a fake bank page and a fake login panel are displayed. If the correct credentials are provided, the victim is redirected to a page where they are asked to enter the authorization code that the victim will receive from their bank via SMS. The online banking credentials and SMS code obtained in this way are used to steal money from the account
– informs the CSIRT team.
What to do if we have provided data to scammers? “If you have provided your data on this or a similar website, contact your bank immediately. A quick response gives you a chance to avoid the loss of funds” – experts explain.
Source: Gazeta
Ricardo is a renowned author and journalist, known for his exceptional writing on top-news stories. He currently works as a writer at the 247 News Agency, where he is known for his ability to deliver breaking news and insightful analysis on the most pressing issues of the day.
