Although phishing, i.e. extorting data via a crafted e-mail, is almost as old as the Internet itself, this type of fraud is still very popular among cybercriminals. The reason is simple – this method still works.
The CERT Polska team operating at the Scientific and Academic Computer Network (NASK) has just informed about a new phishing campaign, this time targeting users of Allegro, the most popular auction platform on the Polish Internet.
Scam on Allegro. Beware of the suspicious
Fraudsters impersonate Allegro and send users of this website e-mails informing about account suspension. The e-mail is accompanied by a link that leads to a crafted website that looks confusingly like Allegro.pl. Victims are then asked to log in to the fake website. If we do this, our login details will end up in the hands of cybercriminals.
Criminals send a message informing about the alleged suspension of the account on the auction website. The message contains a link to a fake website through which recipients can contact the portal’s customer service department and solve the problem.
– explains NASK.
Experts from CERT emphasize that when providing login details on any website, it is worth making sure that its address is correct. NASK also reminds us that we can investigate all cases of suspicious websites
Phishing continues to take its toll. How not to be deceived?
Phishing is a method of fraud that involves impersonating a known person, company, organization or institution. The goal of fraudsters is to gain the trust of a potential victim and force him or her to provide, for example, personal data, account password or credit card number.
Phishing campaigns are usually massive. Fraudsters send identical e-mails or text messages to thousands of people, hoping that at least a small part of them is waiting for a parcel from an online store or using the bank they are trying to impersonate.
So how can you protect yourself against phishing? First of all, use the Internet wisely. Before clicking on any link received by e-mail or text message, it is better to make sure which website it actually leads to. A crafted website is usually embedded in a foreign domain or its address differs from the address of the original bank or website website.
But what if, through inadvertence, we have already fallen into the trap of phishing? You should contact your bank immediately and request a block on your account. If we react quickly, there is a good chance that we will anticipate the actions of criminals.
Source: Gazeta
Mabel is a talented author and journalist with a passion for all things technology. As an experienced writer for the 247 News Agency, she has established a reputation for her in-depth reporting and expert analysis on the latest developments in the tech industry.
