The Ministry of Digital Affairs has warned Russians about a new fraudulent scheme using the "Gosuslugi" portal. Fraudsters call mobile and landline phones, posing as "Gosuslugi" employees. Under various pretexts and reasons, they request the login, password, and verification code from SMS or a special application (TOTP code). After that, they gain access to the user's personal account on the portal and can use all the personal information from there for criminal purposes.
There are also cases when people receive messages on behalf of the portal asking them to follow a link to update some information about themselves. Such a link leads to fake sites similar to "Gosuslugi." If you enter your emails, phone numbers, and passwords on them, they go directly into the hands of criminals.
How to Protect Yourself from Fraudsters
The Ministry of Digital Affairs asks Russians to immediately report a suspicious call from a recognizable number to "Gosuslugi" through a special form. You can also leave a complaint there if you encounter a fake phishing site.
You need to follow a few simple rules to protect your profile and not become a victim of fraudsters:
- Do not provide login information to telephone fraudsters. If you receive a call, someone introduces themselves as an employee of "Gosuslugi" and asks for a code, hang up immediately. Representatives of the portal never call and ask for a login, password, or verification code from SMS or a special application (TOTP code);
- Do not follow links that may offer to update information about you on "Gosuslugi." The only correct address for "Gosuslugi" is "gosuslugi.ru," and the original application can only be downloaded from official stores — RuStore, Google Play, App Store, and AppGallery;
- Protect your account on "Gosuslugi" — create a strong password, use it only on this portal, and change it periodically;
- Enable two-factor authentication on your account on "Gosuslugi" if you don't already have it. 80 million people already use it on "Gosuslugi," which is 70% of the portal's users. It can be in the form of a code from SMS, biometric login, or a one-time code from a special application (TOTP);
- Never, ever tell anyone your password or information about the second factor of protection, even if it is needed by a close relative. This information can then be used by fraudsters, extorting it by deception or stealing it.
Read Materials on the Topic:
AI Fraudsters Extort Money Using Fabricated Voices of SUSU Management
