This time hackers are targeting mobile users in 88 countries around the world. Usually hackers target users of one operating system, but this time both Android and iPhone are on target. According to security researchers, cyber criminals are sending phishing messages to 88 countries using iPhone and Android smartphones leading to Global Smartphone Attack.
These messages are sent through iMessage and RCS (Rich Communication Services) chats through the ‘Lucid’ phishing-as-a-service (PhaaS) platform, which includes links to phishing websites. Due to end-to-end encryption (E2EE), these messages easily pass traditional SMS spam filters. Cyber criminals are selling licenses of this platform through the Telegram channel, so that other criminals can also use it.
Lucid platform claims to send more than 1 lakh messages daily
Unlike other traditional SMS phishing, messages sent via iMessage and RCS have a higher delivery rate as these are E2EE based services. These messages are much cheaper than SMS as they do not incur mobile operator charges. Large iOS device farms are used to send phishing messages on iMessage where temporary Apple IDs are used. Cybercriminals take advantage of security flaws of mobile network operators to send RCS messages.
ALSO READ: What Is FraudGPT: 5 Dangerous Tasks Leading To Cybercrime
Phishing messages contain links that direct users to fraudulent websites. These phishing websites are set up on more than 1,000 domains. For example, some messages ask for fake toll payments to trick users into making payments. Some messages on iMessage demand a response from the recipient as links are disabled by Apple in messages from unknown senders.
How is your personal and financial information stolen?
Through phishing websites, users are robbed of sensitive data including credit card information. Criminals use a verification tool to verify these card details and then either use it themselves or sell it on the dark web.
According to researchers, the Lucid platform is being operated by a Chinese group called ‘Shinshin’. Subscriptions to this platform are sold through a Telegram channel on a weekly basis. Other phishing platforms like Darkula and Lighthouse may also be linked to this group.
ALSO READ: iPhone Battery Saving Hacks: 5 Power-Hungry Settings to Switch Off!
Share
AI Outsmarts Humans in Turing Test: What It Means for Future?
Vijay Deverakonda reveals BTS moments of Kingdom teaser voiceovers
