The opportunities for cybercriminals are multiple and are linked, to a large extent, to the news that occupied the agenda each day. This means that they modify their phishing techniques based on what is currently in the news.
with the of Soccer World Cup Qatar 2022 the strategies of criminals appear from the purchase trends of linked products. In cases like these, the high demand for a product and the limited supply are taken advantage of, which generates anxiety among buyers. For example, loose figurines were offered (Messi’s can be worth more than 10,000 pesos), packages and albums, which include quantity promotions.
The attackers’ operation is intended to steal personal data and all kinds of sensitive information: passwords, private data, access to home banking and they can even take control of the device, block it and ask for ransom money. With this originates identity theft to make purchases, take out loans, duplicate credit cards, among other possibilities. The Specialized Fiscal Unit in Cybercrime (UFECI) It has already received complaints about deception in online purchases at points such as Facebook Marketplace or WhatsApp groups.
It is key to keep in mind that no one is exempt from receiving any notification that could be fraudulent, the important thing is to be informed to know how to act. In order to manage purchases and avoid deception, we share the recommendations of Pablo Lima, Director of Sales for the Southern Cone from the multinational cybersecurity company VU, a specialist in fraud prevention and identity protection.
How to avoid scams for Qatar 2022
– Be aware of atypical situations and know how to respond to avoid falling into the trap.
– Cybercriminals look for new ways to operate: phishing messages can be received for any excuse (draw, promotions, discount promises, alleged strange movements in accounts, among others).
– The channels where these scams occur are social networks and messaging services.
– When the victim is contacted through a formal channel, the scammer asks to continue the sale by other means, such as a WhatsApp message: since the transaction is not carried out within the official platform, any possible claim is invalidated.
– Once the payments are transferred electronically, the anonymous seller cuts off contact, blocks the victim, and unsubscribes from the publication, leaving the victim without their money, without the product, and with few options to report the incident.
SHOPPING RECOMMENDATIONS
– Buy at authorized points of sale.
– In online purchases, do not leave the electronic commerce platforms to carry out the transactions.
– In case of being a victim of a scam, file a police report and report the case by mail to denunciasufeci@mpf.gov.ar
How is the operation of scams by QR or “qrising”?
One of the most widespread forms of scams with the sale of the figurine album was through the QR code or “complaining” (derived from the combination of the concepts phishing and QR code).
This type of scam consists of manipulating QR codes: when they are scanned, they redirect the victim to a web page that impersonates the authentic one, but which at first glance has the same appearance as the original one.
How to prevent being a victim of qrising?
– Disable the option to automatically open QR code links on the device.
– Check if the URL of the web page to which the QR redirected is correct (pay special attention if they are shortened as it is not usual).
– If you ask for private information, think about whether it is really necessary.
– Do not scan QR codes of dubious, unknown or unofficial origin.
– When scanning a physical QR code, check that a cybercriminal has not pasted a fake on top of the real one.
– Be wary of promotions that are not on the official channels of the companies.
– Check the sender in emails and WhatsApp.
– Avoid clicking on suspicious links, even if they were sent by known contacts.
– Do not share information, links or files without being sure of their origin.
– Install a reliable cybersecurity solution in each of the devices connected to the Internet that are used, as a second authentication factor.
– Keep devices up to date.
Where can complaints be made?
or UFECI: (5411) 5071-0040.
o The National Directorate for the Protection of Personal Data: (54-11) 2821-0047.
