MOSCOW, Aug 19 (PRIME) -- Cybersecurity experts have detected 312 new phishing domain names of popular Russian financial institutions in July, more than in January–June, and all such resources were constructed on the same platform, business daily Kommersant reported on Wednesday, citing Telegram channel @In4security.
The total number of fraudulent domains was at 618 in January–July with two thirds of them launched via Russian registrars and many in exotic domain zones .cf or .icu, @In4security said.
The new phishing websites are organized by the same scheme: fraudsters add one or several characters or words “online”, “cabinet”, “vhod”, or “login”.
Head of special services at Infosecurity a Softline Company Sergei Trukhachyov said such websites imitate pages of logging in into personal accounts of banking servicing, and the attacks target the corporate sector. As a login and a password are entered, users are offered to download a plugin for a browser, which is used to embed a Trojan virus.
All sites are based on the same software platform to create and manage phishing resources, which means the attack was a result of activities of one criminal group, the expert said.
End
|
|
