The Federation Council warned about the seasonal activation of scammers exploiting the topic of planned hot water supply shutdowns. Attackers send messages on behalf of management companies offering to check the shutdown schedule at a specific address, and then redirect the user to a phishing website visually indistinguishable from the official one. There, users are required to log in via "Gosuslugi", provide bank card details, or enter a code from an SMS.
Fraudsters are creating increasingly high-quality copies of real resources, including fake login forms through the state portal. In some cases, citizens are offered to download a "schedule document" or a "new housing and communal services application" containing malicious software. The main danger of the scheme is its integration into the familiar everyday context: people expect water shutdowns, and therefore a message about the schedule is perceived as expected and does not raise suspicions.
The Federation Council emphasized that information should only be checked through official city portals or the website of the resource-supplying organization, opening them through a browser, and not via links from messages. No water shutdown schedule requires entering a bank card, SMS code, or password. If such a request appears in a "utility notification", it is a serious sign that you are dealing with a fraudulent scheme. In fact, attackers disguise themselves as official communication channels with residents, using the same language and visual style as real management companies, which significantly lowers the threshold of vigilance and increases the conversion rate of the phishing attack.