FACCT announced a new method for hijacking Telegram accounts – Kommersant
[ad_1]
Specialists from the FACCT Cyber Security Center have discovered 462 new domains for theft of Telegram accounts: they contain legends about voting in competitions with links to phishing authorization forms.
“Accounts are being hijacked on Telegram again – and this is not an April Fool’s joke. The target of the attack was Russian media managers, marketers, journalists, and PR specialists,” the report says. message in the FACCT channel
FACCT specialists explained how an account is hijacked using a new scheme: a potential victim is added to a group and asked to vote for a contest participant. The link from the group leads to the domain (https://people-alliance[.]ru or https://online-happy[.]ru), where you are asked to vote for one of two candidates. After this, the user is directed to another resource – for example, alliance-online24[.]ru. To complete the voting, you are asked to log in to Telegram via QR code or SMS.
After clicking on the link and entering data, the user’s account turns out to be compromised: the scammers link another number to it and gain access to all correspondence in the messenger, contacts and messages. After hijacking one account, scammers add the victim’s contacts to similar groups.
[ad_2]
Source link