False "backdoor" gift cards for data recovery



[ad_1]

20/07/2018 – 13:54



  alt

Even fake gift cards use digital crime to induce consumers to provide their personal data. The success of the new fraud schemes is based on criminals, leveraging the incentive of users to get something for free. However, at best, they spend hours of personal time on unnecessary actions, while at worst, they lose money without receiving anything in return.

Kaspersky Lab's specialists discovered the distribution of an unusual fraudulent system that causes users to waste time and publish their data without any reward

New Ways to Earn Money – instead of simple malware. By creating fake websites for the free creation of gift cards, digital criminals can "sell" user data to third-party sites to which victims are redirected.

While the industry and law enforcement agencies around the world are fighting digital crime, criminals themselves are constantly looking for new ways to make money, no more simple malware. Offering something expensive like free is always a tempting marketing technique and criminals can take advantage of it.

Gift Vouchers
Sites that offer customers free gift cards for known companies like iTunes, Google Play, Amazon or Steam are not new. For example, legitimate applications such as Tokenfire and Swagbucks buy card vendors from vendors and then reward them for certain activities. Criminals obviously recognized the popularity of these sites and decided to deceive users using a simple algorithm.

As they are on a fake website, users are asked to choose the gift card that they desire to get a code. Then the deception mechanism begins. However, to receive the code, the user must prove that it is not a robot. To do this, he must follow the suggested link and respond to various tasks whose number and type are determined by the network of partners to which the user is redirected. For example, you may be asked to fill out a form, give a phone number or email address, subscribe to a paid SMS, install an adware, and so on.

Results
The result is predictable: if the victims are tired of answering endless questions, or if they end up having useless code. Criminal profits range from a few cents per click to a desired link, up to several tens of dollars to fill out a form or subscribe to paid services. Thus, criminals achieve substantial gains from scratch, they are paid for by the actions of the user on the sites of third-party partners, who also benefit from access to personal data that can be used for private purposes.

Recommendations
In order to avoid the loss of personal data by digital criminals, Kaspersky Lab researchers suggest users follow a few simple rules:

– Remember that nothing n? is available for free, free meals and always deal with offers that seem very tempting to be true with skepticism.

-Check the HTTPS connection and domain name when opening a web page. This is especially important when using sites containing sensitive data – websites for online banking, online stores, emails, social media sites, and so on.

– Do not share your sensitive data with third parties. access, credit card data, etc. Official companies will never request such data by email.

-Don't discuss questionable links between your friends

-Check with the company if it gives real gift codes and if the site is its official partner. To do this, contact the official support service on the official website of the company.

(Why?)

Source: SEPE

Posted by AutoPolis, in category Latest News

[ad_2]
Source link