Pay attention to your card details: how hackers spit using the names of courier companies

According to Bitdefender IT security researchers, a new fraudulent e-mail campaign claiming to be sent from well-known courier companies has emerged.
Hackers are attempting to convince people to click on links or download unsafe files that would leave them bankrupt.

In the fraudulent messages, cyber attackers take advantage of the reputation of well-known brands in the local courier and postal services market, such as FAN Courier, DPD, DHL, Romanian Post and Balcan Express Curier, but also the increased demand for deliveries during the pandemic.

Some messages allow recipients to pay an extra delivery fee and click on links that take them to a bogus website where they can enter their credit card information.
In turn, duped victims knowingly give personal information to attackers in return for the right to make payments from their bank accounts until they are drained.

Hackers want to steal your card data

Another option is to submit updates on a current delivery or reminders about the impossibility of making a delivery because the receiver could not be reached or the delivery address and contact information is incorrect.

This data is sent as attachments in various e-mails, and those who open them become infected with computer threats that allow criminals to monitor all data traffic on the system, as well as steal passwords and gain complete access to it.
any of the victim’s online profiles

In order to appear as credible as possible, e-mails are fraudulently used by the logos and colors of the companies concerned and are written concisely and legibly. The messages are short and correct, without the grammatical errors specific to these types of scams in the past.

Earlier this year, Bitdefender warned of a similar campaign of fraudulent e-mails claiming to be sent from well-known local banks, such as Banca Transilvania, BCR, CEC Bank, ING, Raiffeisen Bank and UniCredit Bank.
Mai multe despre acest text sursă

What to do so you don’t fall into the trap set by hackers

To monitor deliveries, go to the courier company’s website directly rather than being guided there from an email or message of unknown origin.

Then, confirm any additional delivery fees demanded by e-mail by calling the company directly.
Before clicking on links or uploading attachments, double-check the email’s sender and his address.

Naturally, you can stop opening executable files or clicking on links in questionable emails from senders you haven’t heard from before.
It also employs a high-performance protection solution capable of detecting and preventing the installation of computer threats on computers.

Finally, it is better to use the service computer exclusively for technical purposes and not to use it to access personal software or programs.

Related posts

Leave a Comment