Singapore is a new place, adding to the list of top scammers and hackers. Because here, a new credit card stealing campaign is found snatching payment details of sellers on classified sites. The scammers do simple phishing tricks and attempt to transfer funds directly to their bank accounts using a one-time password (OTP).
Moreover, Group-IB detected such a Singapore incident in early March 2022. Furthermore, they said the whole incident was nothing but part of a global operation called “Calssicscam.” We understand that hearing such words remains hard for you. For this reason, below, we are sharing a guide that lets you know the complete details of Classicscam.
How hackers steal card details from classified sites
A classic scam refers to a fully automated scam as a service that targets classified site users who buy or sell on it. However, these are the main targets of scammers. They also scam banks, cryptocurrency exchanges, delivery companies, moving companies, and other broad-scope service providers.
The central feeding is done through telegram channels, where scammers do such things randomly. Initially, they targeted a scam of $29 million. According to Group-IB, this scam network has 38,000 registered users who get about 75% of the stolen amounts. At the same time, platform administrators receive a 25% share.
Earlier, such scams were noted in Russia, the US, and Europe. However, exposure to mimicking popular Singaporean classified sites led scammers to join Singapore. They have 18 dominant teams that influence such scams through Telegram bots. Indeed, the scammer generates a phishing site on a popular Singaporean classified site.
After that, look for people on Telegram interested in buying something. Once any are found, they send the created phishing site to them. So, when the seller clicks on it, he will be directed to a page that looks almost like a simple classified site. Here, the seller asks you to enter their full name, card details, CVV, and expiration date.
Next, the victim gets the fake OTP page, which the classic scam uses to log in to their existing bank account. Moreover, to verify that it is your account, users must enter their account balance to complete the verification process. So, such classic scams work to harm familiar people a lot. However, cyber cells are stuck behind such scammers.
However, ClassicScam is a fully automated scam procedure that is hard to tackle. Instead, we can take some precautions before any purchase. When you purchase anything from a classified site, make sure to check all the pages. At the time of payment, if it directs you to another suspicious page, verify it with officials, then further proceed.
Conclusively, phishing is a common trick that becomes a passcode for anyone to access your details. It means if you cope with scammers’ phishing tricks, then nobody can bypass your financial as well as personal details. So, always pay attention to each phone call, message, email, and other phishing activity.