Chat Peak: why scammers make Russians channel administrators
Scammers are actively attacking Russians in group chats and Telegram channels. Huge sums are lost due to schemes with the issuance of keys to intercoms, fees for the installation of barriers and under the pretext of solving other economic issues. A new tactic of "group" attacks is granting the user, without his consent, the rights of the administrator of various kinds of resources with illegal content. The details are in the Izvestia article.
Editorial share
Scammers are trying to manipulate users of social networks by granting administrator rights in media channels and groups without the consent of the appointee.
"The previous owner of the channel (...) I gave you the rights to it. Now you are the new owner of this channel and you are responsible for the content of the publications in it," the text of the message, transmitted to the Izvestia source, says. The source clarified that it was a channel with a small number of subscribers, which publishes criminal and military news, including those with violations of current legislation.
— In such cases, a person who is not savvy in the administration of media resources can be manipulated by threats of civil, administrative or criminal liability, — Konstantin Parfenyev, an expert in the field of cybersecurity, told Izvestia.
According to a law enforcement source, teenagers are often victims of this kind of fraud. This is exactly the case when a person can be threatened with articles about treason, spreading false information about the use of the Armed Forces of the Russian Federation, etc.
Surrounded by enemies
— A significant number of requests are related to deception or an attempt to deceive in real house chats or chats created by intruders for residents' communities (district, brownie, entrance), — said a source in law enforcement agencies of the Moscow region. — Another popular ploy in recent months is the creation of chat rooms on behalf of the Ministry of Cleanliness, supply companies, and energy companies. People are added to such communities without their consent — this should alert the user. The only task is to find out sensitive information, transfer communication to personal chats with interlocutors, lulling their vigilance.
According to him, at first, scammers seek to gain access to Public Services or other government services. In the future, the attack can develop according to various scenarios, but the outcome for the user is always sad — loss of money, credit bondage, trouble with loved ones, or even criminal liability.
The press service of the Ministry of Energy of the Moscow Region warned that residents are being massively added to closed groups, outwardly designed as an official Mosenergosbyt chat or a chat at home.
— In the newsletter, scammers promise some kind of "recalculation" or "discounts on housing and communal services." The purpose of scammers is to lure out the confirmation code that comes in the SMS. After receiving it, the attackers gain access to a personal account on the Gosuslugi portal," the organization said in a statement.
Travel Club
Another criminal trend is the prevalence of criminals in travel forums and chat rooms before the start of the holiday season. Cheating occurs, as a rule, on foreign platforms. The attackers operate according to a well-established scheme: they publish attractive ads about excursions, transfers, rental housing or profitable currency exchange, according to the Bank of Russia branch in the Omsk region. To be convincing, scammers copy the accounts of administrators of real communities or disguise themselves as well-known booking services.
Gullible Russians are being seduced by dumping prices and, most dangerously, by the possibility of paying in rubles by transfer to a Russian card or through the SBP. Such transfers are instant and practically irreversible, and it is extremely difficult to find criminals operating from abroad.
Friends in the game
Another community of interest to pro—Ukrainian criminals is gaming chats, where teenagers mostly "live". In these groups, manipulators select victims for the purpose of stealing property, and also incite minors to serious crimes. This activity was reported by State Duma Deputy Anton Nemkin in an interview with RT. Criminals pose as security forces and exert psychological pressure on children. As a rule, they report false information about the alleged offenses they have committed. In particular, they are accused of treason and threatened with criminal liability. Most often, the purpose of such actions is to get to the money of the player's parents.
"This is no longer just a financial crime, but a form of psychological pressure on minors," Nemkin told the publication.
How to avoid trouble
According to cyber security expert Konstantin Parfenyev, the "geography" of threats has expanded.
"If Telegram used to be the main testing ground, now system attacks on other messengers are also being recorded," says Parfenyev. — Intruders follow the audience.
The social engineering method has become thinner, the expert believes.
— Scammers don't hack accounts, they clone an identity. Photos, position, place of work — all this is collected from open sources, including social networks. The attackers register a new number, substitute your photo and start a dialogue on your behalf with colleagues.
—The basic rule of zero trust is that incoming codes and personal data are the digital equivalent of the keys to a safe," says Parfenyev. — You can not transfer them under any pretext. Do not engage in dialogue with strangers who have added you to the group. Any reaction is a signal to the bot that the number is active.
The attack patterns are updated weekly. There is only one protocol of action here: suspicious activity has been detected — immediately contact the information security service or the management. Independent investigation here only plays into the hands of the attacker.
Переведено сервисом «Яндекс Переводчик»
