An expert explained the dangers of the "spoofing" fraud scheme
"Spoofing is a type of cyberattack when an attacker masquerades as another person, company or object to gain the trust of a user, Igor Bederov, founder of Internet Search and director of the investigation department at T.Hunter, told Izvestia on December 4.
"For example, he creates a domain name similar in spelling to the victim company's website. After that, the attacker begins correspondence with its counterparties, completely copying the corporate style and organizational structure of the organization. In the process of such communication, he sends a notice to change the payment details to his own," he said.
The expert emphasized that some rules will help not to fall for the tricks of malefactors. Thus, it is necessary to verify e-mail addresses of contractors, checking their technical - service - headers. This allows you to identify fake e-mail addresses, as well as those that do not belong to the contractors, said Bederov.
"It is necessary to monitor the registration of domain names similar in spelling to yours. If you find that such a domain name is potentially engaged in fraud (makes a redirect to your site, imitates its design, details, etc.) and does not belong to your company, you need to sound the alarm and demand to unsegment the domain from the domain name registrar," he said.
Earlier, on November 17, Evgeny Pankov, project manager of the .RU/.RF domain coordination center, told Izvestia that there is a steady increase in phishing attacks conducted via messengers, especially Telegram and WhatsApp (owned by Meta, which is banned in Russia). According to him, 2,374 domains imitating Telegram were blocked in Runet in the first 10 months of this year, which is 2.2 times higher than the same period last year. For the second messenger, the number of blocked domains increased more than five times - from 205 to 1,036.
Переведено сервисом «Яндекс Переводчик»
