Teacher
Professional
- Messages
- 2,669
- Reaction score
- 819
- Points
- 113
Group-IB has identified a new type of fraud involving the use of fake 3-D Secure payment confirmation pages. At gunpoint are citizens who love to buy goods and services on the Internet.
Experts noted that 3.7 million such cases are recorded every month. Group-IB also named the amount of damage caused by such a scheme of attackers - 400 million rubles in the first six months of 2021. Apparently, criminals have learned to competently fake payment pages protected by 3-D Secure technology. For example, scammers place logos of well-known payment systems on phishing web pages: Visa, MasterCard, and even the Russian MIR. As a rule, this does not arouse suspicion among users who are trying to make a purchase faster. This scheme is also bad for the victims because the money sent to the cybercriminals will be quite difficult to return, since the user himself confirmed the transaction with a short code from an SMS message.
A citizen is lured to a phishing page using advertisements, spamming or posting goods on bulletin boards. The unsuspecting victim, of course, enters all the necessary details on the site and transfers the money to the scammers. Moreover, the latter recently slightly modified the principle itself: information about the user's bank card remained intact, and instead of a legitimate page from 3-D Secure, the victim was redirected to a fake one.
Based on materials from anti-malware.ru
Experts noted that 3.7 million such cases are recorded every month. Group-IB also named the amount of damage caused by such a scheme of attackers - 400 million rubles in the first six months of 2021. Apparently, criminals have learned to competently fake payment pages protected by 3-D Secure technology. For example, scammers place logos of well-known payment systems on phishing web pages: Visa, MasterCard, and even the Russian MIR. As a rule, this does not arouse suspicion among users who are trying to make a purchase faster. This scheme is also bad for the victims because the money sent to the cybercriminals will be quite difficult to return, since the user himself confirmed the transaction with a short code from an SMS message.
A citizen is lured to a phishing page using advertisements, spamming or posting goods on bulletin boards. The unsuspecting victim, of course, enters all the necessary details on the site and transfers the money to the scammers. Moreover, the latter recently slightly modified the principle itself: information about the user's bank card remained intact, and instead of a legitimate page from 3-D Secure, the victim was redirected to a fake one.
Based on materials from anti-malware.ru
