Researchers at ESET, a leading proactive threat detective company, have discovered various spam campaigns that try to benefit from the World Cup 2018 proximity and share some examples of fraud that are already circulating. Through social networks, mail or other messaging sends fraudulent messages using the technology of social technology to bluff victims and steal their money.
Cybercriminals benefit from massive events, such as the World Cup in Russia, to develop cheating campaigns via the web, or to run foreigners planning to visit the country to enjoy the sports show. For the latter, the deceptions are associated with the purchase of cheap tickets, packages that include accommodation or flights to the cities that are headquartered, usually those cybercriminals choose to develop social engineering campaigns via email or social networks. 1
ESET Latin America Research Laboratory, Sharing Recommendations to Avoid Falling in Fraud FIFA World Cup Russia 2018:
⦁ Facts Pages That Simulate To Be Official Devices Related To The Event: In this regard, the scammers will try to replicate pages of the organizational unit, that this case is FIFA, as well as sponsors, such as Visa, Adidas or Coca-Cola, to send messages with the congratulations for having "luck" to have won a few tickets, air tickets or something like enjoying the world . Thus, they will request personal information or request payment so that they can get the benefit. It is recommended not to assume that a site is legitimate only because its address appears to have a security certificate (HTTPS) because several fraudulent websites use HTTPS in their addresses.
⦁ Deceptive messages of interest: At this time, it's no wonder to receive emails or messages via social networks that contain attachments or malicious links hidden behind a suspicious game, programs, videos with news about some player or other content. Thus, using "help" of a malicious code like a bank trojan implanted in the computer or phone, after accessing the sent content, the attackers will steal data from the bank account.
The recommendation at this point to pay attention to recognizing phishing messages. This means that the offers that are too good are insufficient and also request personal information such as user data or credit card information. Keep in mind that legitimate organizations, such as a bank, will never request such information by email. The same recommendation applies to campaigns that offer a price in exchange for payment, as a true campaign of this type does not require you to pay for a price.
⦁ Posts, Access credentials, or Visa: Other fraud may focus on travel visas or mandatory access information to enter a match (FAN ID) requested by the authorities in the organization country, except for the ticket. In addition, through the use of fake websites or offers, scammers will try to sell goods or send false gifts.
As a recommendation, the International FIFA Federation warns those planning to travel to Russia that tickets to the Parties are only available on their website, while hosting packages that include tickets are only available through selected companies and their respective sales agents.
⦁ Streaming platforms for watching games for free: You can also get offers to watch games for free on a maliciously-running platform (or legitimate but infected with cybercriminals), where the only thing that will be requested for the victim will be to Download an add-on or update your browser or an already installed extension (such as Flash Player) and inadvertently stop compromising with a malicious code or malware such as adware or install a malicious browser.  ⦁ ATM Scams and Card Cloning: Another type of threat that affects tourists is ATM bluffs (ATMs). Recently, the Russian authorities issued a warning for the presence of fraudsters who buy ATMs that are not in circulation to restore them and use them to fool the tourists coming to the World Cup. A simple caution is to use ATMs located in areas of high motion. Also, always pay attention to something that is suspicious, which indicates that the dosing machine was manipulated.
⦁ Meeting Applications: When traveling, it is important to be careful about using applications to meet people like Tinder or Happn. There are those who create fake profiles and when you know the person you can end up in bad time. While apps like Tinder try to prevent this kind of inconvenience by associating the profile of users with their Facebook or Instagram accounts, scammers also create fake profiles on these social networks. Although it can be difficult to recognize when someone else on the other hand pretends to fool you, you avoid finding yourself immediately.
⦁ Apps to translate: If you are traveling to the World Cup and download a program to translate, make sure you select apps trusted. For this, it is recommended that you use the official stores like Google Play or App Store and verify user comments and their ratings. Also review the permissions requested by the application, as you may request unnecessary access, such as location.
⦁ Protect Your Privacy: Avoid taking photos of your passport, ticket or tickets if you travel to Russia. Many times the data that can be used in a malicious way shows. It is also important to review site settings in social media.
World 2018 World 2018 World 2018 World 2018 World 2018 World 2018 World 2018 World 2018 World 2018