Fraudsters may actively exploit the introduced "cooling-off" mechanism for SIM cards, which comes into effect when citizens return to Russia after traveling abroad. During this period, access to cellular services is limited, and you will need to request confirmation to restore communication services.
Experts at Informzaschita believe that attackers may replace SMS messages to steal personal data for access to accounts on the Gosuslugi portal or in banking applications. At the same time, information security specialists emphasize that such a substitution is technically complex.
At the moment, there is no understanding of how effectively the substitution will work and whether attackers will get the technical ability to replace the message and send a fake one with an integrated phishing link.
It is likely that attackers will redirect their activities to messengers, which users will access via Wi-Fi. Experts believe that attackers will use social engineering mechanisms, as they did in other fraud schemes. Among the possible methods: calls to Russians from communication operators or law enforcement agencies and a requirement to dictate the code from SMS under the threat of blocking the number.
Fraudsters adapt very quickly to changes.
It is possible that to achieve their goals, attackers may try to hack databases of tour operators and air carriers. Representatives of Informzaschita note that this is also technically difficult. Among other methods of criminals: collecting data from already stolen databases and bribing employees of hotels and travel agencies.
