The Government, through its Computer Security Incident Response Team CSIRT, identified a “phishing” campaign via email that delivers fraudulent information to its recipients that “your internet password has expired and your account is suspended until validation of your data.
Therefore, the victim, when clicking on the link, is directed to a false and malicious site very similar to that of BancoEstado. In this way the attacker obtains his credentials, the CSIRT explained in its report, declaring that this fraud is “high risk” for users.
Given this situation, BancoEstado replied to the warning on its social networks and reminded its clients that they will never send an email with links.
Previously he had already issued warnings through the same medium, such as “never give your passwords to strangers”, calling to make payments through secure networks, “beware of false executives”, stating that no executive of his bank would ask for passwords by phone. And several tweets that show images of fake sites that are replicas of theirs.
“These cases of phishing do not directly involve the entities or the banking system, but rather are indirect fraud techniques, in which the aforementioned phishing is armed in external infrastructure to build the deception. The entities, in general, by becoming aware of these malicious portals articulate, within their powers and current legal framework, the necessary actions to be able to dismantle them, but certainly the users are also called to be attentive to these attempts to deceive,” the CSIRT detailed in its statement.
For the same report they gave advice against cyber fraud:
- Do not open emails or messages of dubious origin.
- Be wary of links and files in messages or mail.
- Keep your platforms up to date (Office, Windows, Adobe Acrobat, Oracle Java and others).
- Be skeptical about incredible offers, promotions or prizes offered online.
- Pay attention to the details of messages or social networks.
- Evaluate the preventive blocking of the compromise indicators.
- Keep all technology and threat detection platforms up to date.
- Review anti-spam and sandboxing security controls.
- Create permanent awareness for users about this type of threat.
- Visualize the websites that are entered are the official ones.
