Moscow students have been targeted by scammers who flood their email with spam and hack accounts to withdraw money.
The attackers spread fake messages on behalf of the dean's office, demanding registration on the "Modern Digital Educational Environment" (DCES) portal through a "Gosuslugi" account. For persuasiveness, they sometimes ask to record the registration process on video. This allows them to access personal data, including "Gosuslugi" accounts, as well as organize spam calls and account hacks.
The use of screen sharing during authorization is particularly dangerous — it allows attackers to intercept one-time authorization codes. Scammers call through messengers, posing as university or dean's office staff, and demand that instructions be followed, threatening or exerting psychological pressure. If students do not succumb to the tricks, the attackers sometimes call their parents, using previously compiled data leaks.
The DCES portal contains data on digital grade books, student IDs, and access to online courses, making it a valuable target for hackers. Experts note that the main goals of scammers are to gain access to devices, intercept credentials or one-time codes, and attempt to confirm transactions or steal funds by linking a new device to banking systems.
Universities advise students to be vigilant: avoid registering on dubious portals, change passwords, enable two-factor authentication, and never share their device screen.
Read more on the topic:
Scammers started stealing metro fares from Muscovites
Why scammers need SNILS number: Russians explained the essence of criminal schemes
