Luis Suárez World Cup ‘Petition’ Phishing Scam Making The Rounds

/ 3 years ago

A clever phishing website is using the popularity of the 2014 FIFA World Cup, compromising users with a website that mimics FIFA’s official website.

Asking football fans to sign a petition in defense of Luis Suarez, a player from Uruguay now notorious for biting Italian national player Giorgio Chiellini.  The website adds each person, required to enter an email address, and could lead users to be added to a spam emailing list, suffer targeted attacks, or receive emails with malicious attachments.

The spoofed website closely matches the design of the official website, and any links redirect to FIFA’s official website, security researchers note.  The domain was created on June 27, 2014 and is tied to a person operating out of London.

SEE ALSO:  Security Researcher says Islamic State Hackers are 'Garbage at Coding'

Here is what Nadezhda Demidova, Kaspersky Lab Content Analyst, in a statement:

“Armed with users’ email addresses and telephone numbers, cybercriminals can conduct targeted attacks involving banking Trojans for computers and mobile devices.  This technique is used to get round two-factor authentication in online banking systems in cases where a one-time password is sent via SMS.”

Cybercriminals have found great success using social engineering tactics – simply tricking users into turning over their own personal information – and the problem persists.

Thank you to Kaspersky Lab providing us with this information

Image courtesy of Secure List

Topics: , , , , , ,

Speak Your Mind

Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!