12/01/2022

Phishing Scam Targets US Military Members & Families

Cyber security researchers are helping to combat a long-running phishing scam that continues to target US military members and their families.


Cyber security researchers are helping to combat a long-running phishing scam that continues to target US military members and their families.

In order to commit advance fee fraud, scam orchestrators pose as official military personnel and support organizations; the endgame, as always, is to steal victims’ personally identifiable information, which can be used to secure illicit profits.

“Based on our analysis, it’s clear that the threat actor is looking to steal sensitive data from victims such as their photo identification, bank account information, name, address and phone number,” explained cyber researchers.

“With this information, the actor could easily steal the victim’s identity, empty their bank account and impersonate the individual online.”

The campaign features a whole range of spoof websites developed to dupe unsuspecting visitors into believing they are in fact legitimate and affiliated with the US military.

To help reduce visitor suspicion, developers of the malicious content took the time to implement convincing details, such as advertisements for Department of Defense services.

These websites claim to provide a number of differing services, such as care packages, communication permits, leave applications, and even military-based romantic relationships. The services are of course completely bogus, however, with only scammers set to gain.

“The websites were primarily hosted by Nigerian providers that are offshore or ignore the (DMCA) Digital Millennium Copyright Act,” the researchers at Lookout went on.

“We were able to further confirm the operator’s location from a phone number one of the web developers accidentally left on the draft version of the site. The country code of the number is from Nigeria.”

As of now, researchers have managed to identify around fifty military scam websites with connections to the cyber threat campaign.

The Lookout researchers were also able to link the campaign to various other scams advertising phoney delivery services, crypto currency trading, banks, and even online pet sales.



 

Latest


Scammers Steal TikTok Videos for Use on YouTube Shorts

18/01/2022 According to Tenable, which recently reported on the illicit activity, the scammers behind the sharing of the existing TikTok videos have been gaining millions of views, along with subscriber counts in the tens of thousands. These types of scams are generally carried out by orchestrators to promote illegitimate/sham retail goods, including supplements for...


BlueNoroff Threat Group Targeting Crypto SMBs

18/01/2022 According to a Kaspersky research group, BlueNoroff’s campaign, known as SnatchCrypto, fixes its crosshairs on companies dealing with cryptocurrencies, smart contracts, blockchain, decentralized finance, and the financial technology industry. The research group stated that the companies were specifically targeted, and that startups are generally no stranger...


Bitcoin.org Hacked, $17,000 Stolen by Crypto Scammers

14/01/2022 Despite the hack lasting under 24 hours, the orchestrators apparently managed to receive just over $17,000 courtesy of their short-lived ‘double your money’ scam. On September 23, the Bitcoin.org homepage displayed the following fake popup to its visitors: “The Bitcoin Foundation is giving back to the community! We want to support our users who have...


Cybercriminals Linked to Nigerian Crime Syndicate Arrested by FBI

14/01/2022 The FBI’s operation targeted those associated with Black Axe, an organized crime syndicate which originated in Nigeria and has since spread throughout Africa and the world. 23 suspects were charged in Texas’ Eastern District, along with 11 in the Northern District. The group had been active since January 2017, according to US officials, and has engaged...


Recommended




Share this article