Virtualization Technology News and Information
Article
Search:
RSS
Follow VMblog.com:
Improve end user experience in VDI, DaaS and physical endpoint environments
Fake deliveries and WhatsApp spam: scammers get up to some new tricks in Q2 2021

In Q2 2021, amidst continued disruption in supply chains and mail services, scammers sought to use this fact to steal money and credit card details.

Since last year, scammers have been taking advantage of disruption in deliveries to convince users to open phishing links. This past quarter, not only has this trend continued, but the cybercriminals have become more adept at localizing their spam mailings. Users experienced a surge in invoices in different languages asking money related to anything from customs duties to shipment costs. With these mailings, victims are often taken to a fake website, where they risk not only losing money but also sharing bank card details.

Cybercriminals also launched websites that appeared to offer people the chance to buy parcels that could not reach the intended recipients. Such websites were set up like a lottery. Users were not aware of the contents of the package. They bid based on the weight of the package that-if they "won"-never arrived, even after paying the winning bid.

Another new trick from fraudsters this past quarter involved spam sent to WhatsApp requesting small amounts of money. These scams involved several different schemes. One asked that users take a survey about WhatsApp and send messages to several contacts to receive a prize. Another stated that the users already won a large prize-all they needed to do to collect it is pay a small fee.

An additional scam took advantage of the debate surrounding WhatsApp's new privacy policy that allowed it to exchange information with Facebook. Cybercriminals set up fake websites inviting users to a WhatsApp chat with "beautiful strangers". However, upon clicking the link to the chat room, the potential victim landed on a fake Facebook login page-and risks giving up their personal information. Users also received links for fake WhatsApp messenger apps, putting them at risk of downloading malware.

"As in the past, we're seeing attackers take advantage of new trends and disruptions to steal money and credentials, whether that's a growing user of messengers or continued problem with mail delivery amidst a pandemic. Spam and phishing schemes are still some of the most effective ways to launch successful attacks because they play on human emotion. The best thing users can do is be wary of any unexpected emails and be very careful about clicking on any email attachments or links-go to the website directly," comments Tatyana Shcherbakova.

Learn more about spam and phishing in Q2 2021 on Securelist.

Published Thursday, August 05, 2021 12:40 PM by David Marshall
Filed under:
Get This Featured White Paper: Multi-cloud Data Protection-as-a-service: The HYCU Protégé Platform
You may also be interested in this white paper: See It, Fix It, Manage It: Ensuring Hybrid and Multi-cloud Applications Are Reliable and Secure
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
CC2023
big-5g
DTX2023
connected-america
kubecon-eu-2023
disrupt2023
vExpert
Calendar
<August 2021>
SuMoTuWeThFrSa
25262728293031
1234567
891011121314
15161718192021
22232425262728
2930311234