Cybercriminals use fake gift cards to get users to provide personal data



[ad_1]

By creating fake websites to generate free gift cards, cyber criminals manage to sell data on partner sites where they redirect victims. On the one hand, the cybersecurity industry and law enforcement agencies around the world are busy fighting cybercrime and, on the other hand, criminals are still looking to new ways to make money other than malware. Kaspersky.

The free offer of something valuable is always attractive in marketing, and criminals profit from it. Sites that offer users the ability to generate free gift cards for known companies like iTunes, Google Play, Amazon or Steam are not new. For example, legitimate applications such as Tokenfire and Swagbucks purchase card manufacturers from the manufacturer, and then reward customers for certain activities. Criminals have identified the popularity of such sites and have decided to deceive users using a simple algorithm.

According to Agerpres, when on a fake site, the user is asked to select the gift card that he wants to receive the code. After that, the fraudulent mechanism is set in motion. In order to obtain the generated code, the user must prove that he is not a robot. He is then invited to enter the suggested link and fill in various information, their number and type according to the network of partners to which they have been redirected. For example, you may be asked to fill out a form, leave the phone number or e-mail address, subscribe to a paid SMS service, install.

The result is predictable – either the victims are content to give infinite information, or they end up receiving the useless code. Criminal earnings range from a few cents per click on a link to several tens of dollars to fill out a form or subscribe to paid services. Thus, offenders do virtually no profit, being paid as a result of user actions on partner sites that also benefit from access to personal data.

[ad_2]
Source link