The CERT Orange team dealing with responding to cybersecurity incidents reported the scam, which involved the use of a popular hypermarket chain. For some time now, e-mails have been sent to Internet users, the sender of which is allegedly Kaufland.
The message comes from the address “Kaufland
Kaufland photo: CERT Orange
“To have a chance to win, just answer a short survey about your experience with Kaufland,” we read. It is worth noting that the email contains several typos, including: misspelling of the word “may”. What will happen if we click on the link below the message?
A survey appears and, to our surprise, it has quite sensible questions. What’s more, there are 10 of them, and not – as usual with scams – 3.
– explains the CERT Orange Polska team.
In the next step, we learn that we have to pay “only” shipping costs, in the amount of PLN 9, which will be deducted from our card. The problem is that we are not actually paying for shipping, but for access to the “codekits.app” platform, which supposedly offers programming courses. Initially, we are actually charged PLN 9 for a three-day “trial period”, but – as we read in the regulations – “if you do not cancel the subscription during the trial period, every 14 days until the subscription is canceled, a fee of EUR 64 will be charged”, i.e. approximately PLN 275 zlotys.
Either way, we certainly won’t see any free Tupperware packages, because this promotion is the most common scam in the world, the aim of which is to extort our data and – even worse – money.
Fraud CERT Orange
Phishing continues to take its toll. How not to be deceived?
Caution and common sense are the best weapons in the fight against potential threats online. Whenever you receive a suspicious email in your inbox, answer five simple questions:
- Do you know the sender of the message?
- Have you received other messages from this sender before?
- Did you expect to receive this message?
- Does the message title and attachment name make sense?
- Does the message contain malware?
If the answer to any of the questions is “NO”, do not open the email. Also remember that banks, companies offering online payment services or social networking sites never send customers messages asking for login passwords or other sensitive data. If you received such an email, the sender is definitely a scammer.
What if we have already fallen into the trap of phishing? You should contact your bank and request a block on your account. If we react quickly, there is a good chance that we will anticipate the actions of criminals.
People who have had money deducted from their credit cards by fraudsters are in a much better situation. Card transactions are secured by banks through a chargeback system, which makes recovering funds stolen in this way much easier.
Source: Gazeta
Mabel is a talented author and journalist with a passion for all things technology. As an experienced writer for the 247 News Agency, she has established a reputation for her in-depth reporting and expert analysis on the latest developments in the tech industry.
