Don’t Let Cyber Threats Ruin Your Diwali – Here’s What Researchers Say!
As Diwali, the festival of lights, lights up spirits, CloudSEK’s threat research team is alerting to the rise of cyber threats that aim to capitalize on the festive atmosphere. The festivities have attracted a number of cybercriminals who use various scams and fraudulent activities to prey on unsuspecting revelers.
1. Phishing
Amidst the merry rush of e-commerce, phishing campaigns are on the rise, targeting the download and shopping industries. CloudSEK found 828 unique domains imitating well-known brands in Facebook’s ad library.
Fake domains created using scripting techniques aim to appear legitimate and trick less tech-savvy users. For example, shoop.xyz imitated shop.com with almost identical features and content. These fraudulent sites often had control panels. Following CloudSEK’s report and action, the pages were removed for misbranding.
2. Bonanza betting
A domain containing the keywords “Diwali” and “Pooja” traced by Megalayer Technologies to a server located in Hong Kong. This site was redirected to Chinese betting sites including Bet 365 and MGM.
Rishika Desai, Head of Cyber Intelligence, CloudSEK, highlighted that cybercriminals are taking advantage of Diwali’s increased internet traffic to create fake gambling platforms. These fraudulent sites lure users with free gifts or prizes, causing them to create accounts and suffer significant financial losses.
3. Crypto Conundrum
Malicious individuals on Facebook and similar platforms trick users into signing up for untrustworthy cryptocurrency websites. For example, Bot Bro lures users with promises of free life insurance and 5 TLC coins, leading them to questionable crypto platforms.
Rishika cautioned against such arrangements, stressing that a quick online search shows the unreliability of domains like Bot Bro in financial transactions. He warned of several cases where Diwali freebies have been exploited to drive registrations to dubious crypto platforms.
4. The threat of malware
According to the report, on October 3, an e-commerce site selling jewelry was found urging customers to download an application containing Android Trojan malware. The keyword “Diwali” was included in the domain name of this website.
Researchers have highlighted a few steps to ensure safety from these threats during Diwali. They advised users to avoid opening suspicious emails or messages and refrain from clicking on links or attachments from unknown senders. They suggested that users should avoid clicking on links from unknown sources on social media. Gift cards were also recommended to be purchased from reliable sources.
In addition, the researchers noted that online users need to be wary of job ads that promise high wages for minimal work, as such offers often point to scams. Report suspicious messages to the platform for further investigation.