Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Fraudsters are increasingly resorting to a new scheme for gaining access to users' personal data through online purchases, cybersecurity experts told Izvestia. This time, individuals who post ads for the sale of their things on the Internet are under attack. and then turn on screen sharing. At this moment, the accomplice in the crime requests access to change the number in the victim's banking application - and the contacted attacker sees an SMS with a code on the screen. Experts urge sellers of goods to stay on a specialized platform when communicating with buyers, where there are conditions for a safe transaction.
How the new fraud
scheme works The scheme of Internet fraud through screen sharing during online purchases is gaining momentum, Izvestia found out. So, a resident of Moscow, who was selling a sofa on the Internet, turned to law enforcement agencies, the source of the publication said. Under the guise of a buyer, an unknown woman called her, asked about the characteristics of the product, referred to poor communication and warned that her brother would call back. Then an unknown man really called the Muscovite, clarified the phone number and the name of the bank for the transfer, and asked to call him back in one of the messengers.
The man assured that he had transferred money for the sofa, and when the seller did not confirm the fact of receiving the money, he asked to turn on the screen sharing - so he allegedly tried to make sure that the SMS from the bank with information about the transfer had not really arrived. The woman agreed, turned on the remote screen sharing function, and at that moment she received a confirmation code about the write-off of funds. She interrupted the call, but the attacker managed to carry out the operation - the victim lost 14.5 thousand rubles. Law enforcement agencies are conducting a check on this fact, the source said.
Another Muscovite faced a similar scheme. She sold a vase, but in the end she lost more than 12 thousand rubles.
But there are many more such cases, iTPROTECT, a cybersecurity company, told Izvestia. Its experts have identified cases when attackers gained access to the victim's banking application in this way through a change of number.
The goal of fraudsters in this scheme is personal data that is displayed on the smartphone screen, the company said. These are, for example, access codes to personal or corporate accounts, SMS confirmations.
According to experts, what is happening on electronic bulletin boards already has all the signs of a working scheme - an attacker contacts those who sell goods on online platforms and, under the pretext of buying, transfers the discussion of the transaction to a messenger, offers to call via video call to evaluate the product, and during the conversation asks to start broadcasting the screen, allegedly to confirm that the ad is real and made by the person himself.
"At the same time, the second attacker makes an attempt to change the number in the banking application, the victim receives a confirmation code, which is visible on the screen. The code allows you to log in to the bank using the changed phone number and withdraw the user's funds before he has time to cancel the operation"explained Kai Mikhailov, head of information security at iTPROTECT.
He noted that the already familiar and even familiar calls from "representatives of government agencies" are gradually losing their relevance, while the suddenness factor of the new scheme can play a cruel joke when selling goods on online platforms.
How else online sellers
are deceived Fraud related to online trading platforms brings huge money to teams of attackers, said Vladimir Kim, an expert at the Solar AURA Center for Monitoring External Digital Threats, Solar Group of Companies.
"This is mainly phishing, but there are also cases with video calls and screen shares," he explained. "In such a scheme, attackers use social engineering and psychological pressure, convincing the victim to perform actions that seem safe. The main goal is to gain access to sensitive data, such as bank verification codes or logging into one of the accounts.
The scheme using phishing links in communication with sellers on the Internet in the press service of VTB Bank in September was called one of the most common. False buyers call sellers in the messenger and ask to turn on the video, allegedly to view the product. During the conversation, the scammers send a phishing link and convince the customer to click on it. After that, the smartphone screen is locked, while the attackers see all incoming messages with access codes or debits.
Previously, attackers asked to show them the smartphone screen, introducing themselves as employees of official organizations, but recently they have switched to online sales, said Sergey Golovanov, chief expert at Kaspersky Lab.
Scammers willingly use purchases on large online platforms in their schemes, because they are used by most Russians, said Evgeny Pankov, project manager at the Coordination Center for TLD .RU/.РФ.
"Often, for fraud through online purchases, a sophisticated phishing scheme is used, when fraudsters use not only a domain name, but also fake content that is generated by a unique link for a specific user in a certain period of time," he stressed.
There are also options for fraudulent schemes with access to the smartphone screen, he confirmed. The combination of fraud through online platforms and smartphone screens will develop in various ways, the expert predicts.
Source
How the new fraud
scheme works The scheme of Internet fraud through screen sharing during online purchases is gaining momentum, Izvestia found out. So, a resident of Moscow, who was selling a sofa on the Internet, turned to law enforcement agencies, the source of the publication said. Under the guise of a buyer, an unknown woman called her, asked about the characteristics of the product, referred to poor communication and warned that her brother would call back. Then an unknown man really called the Muscovite, clarified the phone number and the name of the bank for the transfer, and asked to call him back in one of the messengers.
The man assured that he had transferred money for the sofa, and when the seller did not confirm the fact of receiving the money, he asked to turn on the screen sharing - so he allegedly tried to make sure that the SMS from the bank with information about the transfer had not really arrived. The woman agreed, turned on the remote screen sharing function, and at that moment she received a confirmation code about the write-off of funds. She interrupted the call, but the attacker managed to carry out the operation - the victim lost 14.5 thousand rubles. Law enforcement agencies are conducting a check on this fact, the source said.
Another Muscovite faced a similar scheme. She sold a vase, but in the end she lost more than 12 thousand rubles.
But there are many more such cases, iTPROTECT, a cybersecurity company, told Izvestia. Its experts have identified cases when attackers gained access to the victim's banking application in this way through a change of number.
The goal of fraudsters in this scheme is personal data that is displayed on the smartphone screen, the company said. These are, for example, access codes to personal or corporate accounts, SMS confirmations.
According to experts, what is happening on electronic bulletin boards already has all the signs of a working scheme - an attacker contacts those who sell goods on online platforms and, under the pretext of buying, transfers the discussion of the transaction to a messenger, offers to call via video call to evaluate the product, and during the conversation asks to start broadcasting the screen, allegedly to confirm that the ad is real and made by the person himself.
"At the same time, the second attacker makes an attempt to change the number in the banking application, the victim receives a confirmation code, which is visible on the screen. The code allows you to log in to the bank using the changed phone number and withdraw the user's funds before he has time to cancel the operation"explained Kai Mikhailov, head of information security at iTPROTECT.
He noted that the already familiar and even familiar calls from "representatives of government agencies" are gradually losing their relevance, while the suddenness factor of the new scheme can play a cruel joke when selling goods on online platforms.
How else online sellers
are deceived Fraud related to online trading platforms brings huge money to teams of attackers, said Vladimir Kim, an expert at the Solar AURA Center for Monitoring External Digital Threats, Solar Group of Companies.
"This is mainly phishing, but there are also cases with video calls and screen shares," he explained. "In such a scheme, attackers use social engineering and psychological pressure, convincing the victim to perform actions that seem safe. The main goal is to gain access to sensitive data, such as bank verification codes or logging into one of the accounts.
The scheme using phishing links in communication with sellers on the Internet in the press service of VTB Bank in September was called one of the most common. False buyers call sellers in the messenger and ask to turn on the video, allegedly to view the product. During the conversation, the scammers send a phishing link and convince the customer to click on it. After that, the smartphone screen is locked, while the attackers see all incoming messages with access codes or debits.
Previously, attackers asked to show them the smartphone screen, introducing themselves as employees of official organizations, but recently they have switched to online sales, said Sergey Golovanov, chief expert at Kaspersky Lab.
Scammers willingly use purchases on large online platforms in their schemes, because they are used by most Russians, said Evgeny Pankov, project manager at the Coordination Center for TLD .RU/.РФ.
"Often, for fraud through online purchases, a sophisticated phishing scheme is used, when fraudsters use not only a domain name, but also fake content that is generated by a unique link for a specific user in a certain period of time," he stressed.
There are also options for fraudulent schemes with access to the smartphone screen, he confirmed. The combination of fraud through online platforms and smartphone screens will develop in various ways, the expert predicts.
Source
