Security News > 2020 > February > Scam Alert: You've Been Selected for 'Like of the Year 2020' Cash Prizes

Cybersecurity researchers have discovered a large-scale ongoing fraud scheme that lures unsuspecting Russian Internet users with promises of financial rewards to steal their payment card information.

According to researchers at Group-IB, the multi-stage phishing attack exploited the credibility of Russian Internet portal Rambler to trick users into participating in a fictitious "Like of the Year 2020" contest.

The development is a reminder that rewards-based social engineering campaigns continue to be an effective means to scam users, not to mention the leveraging the collected data to their financial advantage.

Under the "Like of the Year" scheme, users were invited to win a large cash prize, telling them they've been randomly selected after liking a post on social media platforms such as VKontakte.

Once users agree to pay the commission and fall for the bait, the site redirects them to another attacker-controlled phishing site purporting to be a payment gateway, where they are asked to enter details such as card number, expiration date, and the CVV number, resulting in the theft of card data.

News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/x0QVrrV3mJc/like-of-the-year-scam.html