It’s a large French cybersecurity group warning of a new scam campaign. Sekoia.IO Group emphasizes the fact that the latter targets France only and goes through the programs that target them Data theft from infected phone. We will explain everything here.
This campaign is called phishing, which translates in French as hameçonnage. That is, for example, in this scam, they want you to click on a link. So it should make you want to do it, by placing a bait. Here, therefore, scammers pretend to be a delivery service. They inform you that the parcel will pass or it should pass, but the delivery should pass Stay confirmed via a link.
So your message contains something like “Your package has been sent. Please check and get it” followed by a link. The URL for this link doesn’t look like much. In general, you find at least the name of the carrier such as La Poste, Colissimo or DHL in the name of the URL. Hence, using these simple SMS, these hackers have created a scam.
And so the large cybersecurity group Sekoi.IO conducted the investigation to thwart this scam. Indeed, you should know that France is not the first victim of this group of hackers. Japan, South Korea, Taiwan, Germany, the United Kingdom and the United States have also been targeted. Moreover, Link given in sms changes Depending on the phone models. Mark Neibot, cybercrime engineer at Sekoi.IO says, “On Android, the user is tricked into downloading a malicious app. On iPhone, it’s a phishing that asks Apple IDs to get them back“.
In fact, this scam mainly on Android devices consists of wanting to install a malicious app. It is called MoqHao and thus was designed by a group of Chinese hackers who call themselves Roaming Mantis. This one time installation requires permission to access data such as messages or contacts. Thus, the application does not contain More than restoring everything. Mark Neibut also adds that “By identifying the senders of the trapped messages, we came across a number of infected individuals. We haven’t seen it here, but these kinds of attacks can lead to calls For premium rate numbers for money back“.
Many sms trapped
On the Sekoi.IO blog, it appears to have logged over 70,000 text messages in the first half of July alone. But this number has grown exponentially to over 200,000. The scam starts like this to grow in size. However, France remains one of the least affected countries. In fact, if you are abroad, the scam will not work. The link works only on the territory of the French capital. Indeed, in order to target the population in the respective language correctly. The cybercrime engineer also adds “Potential victims will be either young or old. They will be the least alert about these topics. To counter these attacks, Awareness is required“.
Therefore, if you think that you have been scammed by receiving this type of SMS, you should not click on the link in the message. And if you notice a coffee shop in your phone, you can Uninstall it in your phone settings.