Wednesday , November 13 2019
Home / argentina / They warn of a phishing campaign that steals data from the Mercado Libre newspaper – El Ciudadano and the region

They warn of a phishing campaign that steals data from the Mercado Libre newspaper – El Ciudadano and the region



Computer security experts condemned the spread of a phishing campaign – such as a virtual hoax – with emails that come from a broken domain of a local company and send to fake Mercado Libre websites to steal the personal data of victims.

The letters come from the “.com.ar” address, which means that there is a hacked domain: the criminal managed to log in to the server of this company and started sending e-mails from there, director Christian Borghello explained to the bodies. Segou-Info.

The specialist avoided reporting on which company is participating in order not to interfere with the investigation conducted by the Specialized Prosecutor’s Office on Cybercrime, where he filed a complaint, although he indicated that this campaign has common aspects and others unpublished in the country.

In the e-mail that reaches the victim, it is written: “Dear user. We found a large number of irregularities in your movements, so we decided to suspend your account. To be able to regain access to it, you must verify your identity. Verify your identity here. "

According to Borgello, a feature of this campaign is that, in addition to the “.com.ar” domain, the “.com” domain registered three days ago is violated. ”

“Something special that I’ve never seen in Argentina is that the link that says“ click here ”indicates TrendMicro, an anti-virus company, so anti-spam filters are skipped in these letters,” the expert warned.

After clicking on this link, the attacker asks to enter the password and personal data of Mercado Libre, which he then steals.

The campaign is "very widespread," Borghello said, "although it is impossible to know if there were thousands or hundreds of thousands" of the emails that have been sent so far.

Computer security experts condemned the spread of a phishing campaign – such as a virtual hoax – with emails that come from a broken domain of a local company and send to fake Mercado Libre websites to steal the personal data of victims.

The letters come from the “.com.ar” address, which means that there is a hacked domain: the criminal managed to log in to the server of this company and started sending e-mails from there, director Christian Borghello explained to the bodies. Segou-Info.

The specialist avoided reporting on which company is participating in order not to interfere with the investigation conducted by the Specialized Prosecutor’s Office on Cybercrime, where he filed a complaint, although he indicated that this campaign has common aspects and others unpublished in the country.

In the e-mail that reaches the victim, it is written: “Dear user. We found a large number of irregularities in your movements, so we decided to suspend your account. To be able to regain access to it, you must verify your identity. Verify your identity here. "

According to Borgello, a feature of this campaign is that, in addition to the “.com.ar” domain, the “.com” domain registered three days ago is violated. ”

“Something special that I’ve never seen in Argentina is that the link that says“ click here ”indicates TrendMicro, an anti-virus company, so anti-spam filters are skipped in these letters,” the expert warned.

After clicking on this link, the attacker asks to enter the password and personal data of Mercado Libre, which he then steals.

The campaign is "very widespread," Borghello said, "although it is impossible to know if there were thousands or hundreds of thousands" of the emails that have been sent so far.

Phishing was the type of cyber attack most often used in 2018 around the world, and traditional messaging paths, such as email, were largely joined by messaging applications that could allow attackers to reach a greater number of potential victims.


Source link