White Rabbit and other dangerous fraud schemes in early 2020
13.03.2020 0 Comments
Experts call the new scheme “white rabbit” by analogy with the character of Lewis Carroll’s fairy tale “Alice in Wonderland”, because it all starts with seemingly harmless steps, and as a result the victim ends up in a “black hole”. First, attackers, by the appearance of famous people or using fake videos, offer users to take a survey for which they are promised a reward.
After the victim “pecked at the hook” and passed the survey, she receives a letter in the mail with a message about the win. To receive a reward, it is proposed to click on a one-time link. On the open page, the vigilant user is invited to conduct a test payment, as well as clarify the card’s CVC code or enter a username and password in Internet banking.
Experts note the particular danger of the new scheme, emphasizing that each individual stage of fraud does not cause users to suspect and it is difficult to identify the bank security service. In addition, this type of fraud is usually targeted – attackers collect data about the user, his browser, device, provider and geolocation in order to generate a one-time link for a specific victim, and therefore if the affected user complains to the site registrar about illegal actions, the link indicated in the letter simply will not open.
Fraudsters know which online games a potential victim is interested in or which online stores they visit. So, among the victims of the new scheme, fans of the popular video blogger Yuri Dude could be – a fragment of his video about this contest was used by attackers for a fraudulent survey.
Protecting yourself from scammers is easy. You should always remember your Internet security, do not click on suspicious links and, moreover, do not indicate your card details on unknown sites, including the CVC code on the back and passwords from Internet banking.
In early March, it also became known about the increase in the number of cases of fraud with bonus card bonuses. Attackers gain access to the client’s personal account and then pay the bonuses accumulated by them for their purchases. In some cases, fraudsters register their personal account on a card issued in the name of another person. Moreover, the victim may not even suspect that his bonuses were spent by intruders and continues to save them, applying a plastic card with every purchase.
Compensation for data leakage
At the beginning of the year, another type of fraud was discovered on the Internet. Victims were lured by a proposal to pay compensation for data leaks. Attackers created a site on behalf of the Personal Data Protection Fund, where users were asked to check if their data was in the public domain.
When you enter your last name, first name and phone number, a warning appears on the screen that the user's personal data is in the public domain, and therefore he is offered compensation in the amount of $ 2,500. To get it you need to buy a temporary social security number for $ 9. The user is redirected to the payment page, where you need to fill out the form, indicating the card number, CVC code and confirming the transaction.
False Bank Representatives
Earlier they also talked about another new scheme for stealing money from bank cards. Attackers call the victim and, posing as bank employees, find out the details of the bank account and, without the knowledge of the owner, transfer money from him. To protect yourself and your money, do not disclose account details, a bank card number to third parties and do not provide transaction confirmation codes from SMS messages.
Put 5 stars at the bottom of the article if you like this topic. Follow us on Telegram, VKontakte, Instagram, Facebook, Twitter, Viber, Zen, YouTube.