Attackers have developed a new fraud scheme targeting subscribers of Russian mobile operators, using fake websites of well-known brands. According to Andrey Biichuk, product director of MTS's "Defender," this scheme is already in practice. It begins with the creation of fake websites where victims enter their personal data, such as email, login, and bank card details, to make purchases. This data is then passed on to hackers.
According to Biichuk, previously the fraud ended at this stage, but now it has been modernized to extract more profit. After the victim pays for the goods, the fraudsters call them, claiming that the order cannot be fulfilled and delivery is impossible. They state that the bank cannot automatically refund the money, but offer to do it manually.
During the conversation, the criminals ask to confirm personal data and provide information about the bank account or card. Sometimes they offer to block the card "for security" or strongly recommend installing a "security application," which is actually a program for remote access.
Thus, attackers can gain access to the "Gosuslugi" portal, online banking, and other confidential data of the victim. To build trust, they sometimes transfer a small amount of money to the victim's account, after which they commit large financial thefts.
Read more on the topic:
Scammers have come up with a new way to deceive Russians
Using fake health apps: the State Duma spoke about a new way of fraud
Not their own voice: The Central Bank warned Russians that scammers have learned to use deepfakes
