Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Attackers have already deceived hundreds of property owners, depriving them of savings and data.
F.A.C.C.T. analysts have identified new Internet fraud schemes aimed at property owners who rent out housing. Experts warn that landlords now risk not only facing unscrupulous tenants, but also becoming victims of cybercriminals who can steal bank card details and empty accounts.
The first fraudulent scheme, called "Mammoth", works as follows: the attacker finds an ad for renting an apartment on popular real estate resources and contacts the landlord, stating an urgent need for housing. After the transition of communication to the messenger, the criminal demonstrates interest by requesting additional photos and details about the apartment. Then the scammer offers to draw up a contract through an online rental service, promising to fill out all the documents yourself and transfer the agreed amount.
The key point of the scheme is to send the landlord a link to a fake site generated by a special Telegram bot and imitating a well-known service. When trying to receive payment, the owner of the property enters his bank card details, after which cybercriminals steal funds from his account.
F.A.C.C.T. analysts reported the detection of at least six scam groups operating under this scenario. In total, there are more than 4500 participants in them, mainly executors of fraudulent schemes.
Another version of the apartment rental scenario involves a malicious APK that is disguised as an Android spy Trojan. In this case, the attackers introduce themselves as a real estate agency and offer assistance in the quick delivery or sale of the apartment. The property owner is invited to place an ad on the agency's website, where you need to fill out a form, indicating your name, phone number, city, bank card number and property information. After that, the victim is asked to download an application to complete the transaction.
In reality, the app is malicious and contains an Android spy Trojan that intercepts SMS messages. With this program, fraudsters can access the victim's bank accounts and write off all funds. According to F.A.C.C.T., in some cases, the amount of stolen funds reached 48,000 rubles.
To protect against such attacks, experts recommend not to transfer communication from chats of well-known ad services to messengers, ignore links from strangers in messengers, social networks or email, and install only official applications found on your own in mobile app stores or on legitimate service sites.
Source
F.A.C.C.T. analysts have identified new Internet fraud schemes aimed at property owners who rent out housing. Experts warn that landlords now risk not only facing unscrupulous tenants, but also becoming victims of cybercriminals who can steal bank card details and empty accounts.
The first fraudulent scheme, called "Mammoth", works as follows: the attacker finds an ad for renting an apartment on popular real estate resources and contacts the landlord, stating an urgent need for housing. After the transition of communication to the messenger, the criminal demonstrates interest by requesting additional photos and details about the apartment. Then the scammer offers to draw up a contract through an online rental service, promising to fill out all the documents yourself and transfer the agreed amount.
The key point of the scheme is to send the landlord a link to a fake site generated by a special Telegram bot and imitating a well-known service. When trying to receive payment, the owner of the property enters his bank card details, after which cybercriminals steal funds from his account.
F.A.C.C.T. analysts reported the detection of at least six scam groups operating under this scenario. In total, there are more than 4500 participants in them, mainly executors of fraudulent schemes.
Another version of the apartment rental scenario involves a malicious APK that is disguised as an Android spy Trojan. In this case, the attackers introduce themselves as a real estate agency and offer assistance in the quick delivery or sale of the apartment. The property owner is invited to place an ad on the agency's website, where you need to fill out a form, indicating your name, phone number, city, bank card number and property information. After that, the victim is asked to download an application to complete the transaction.
In reality, the app is malicious and contains an Android spy Trojan that intercepts SMS messages. With this program, fraudsters can access the victim's bank accounts and write off all funds. According to F.A.C.C.T., in some cases, the amount of stolen funds reached 48,000 rubles.
To protect against such attacks, experts recommend not to transfer communication from chats of well-known ad services to messengers, ignore links from strangers in messengers, social networks or email, and install only official applications found on your own in mobile app stores or on legitimate service sites.
Source
