Phishing: another new campaign impersonating Correos to steal financial information

1622138550 898532 1622139039 rrss normal.jpg
1622138550 898532 1622139039 rrss normal.jpg

The National Cybersecurity Institute (INCIBE) is once again warning of a campaign to send fraudulent emails that try to impersonate Corrreos to get hold of our bank details. This is not the first time this has happened, it has already been on several occasions that this problem has been reported, so users are recommended not to lower their guard against this type of fraud. Today a notice of a new phishing campaign has been launched through emails impersonating Correos. The purpose of the campaign detected is to steal personal and financial data through identity theft from Correos. Phishing: another new campaign impersonating Correos to steal financial information In this impersonation, cybercriminals try to deceive their victims into believing that a package is about to be delivered, and they will receive it if they pay a certain amount of money, being able to make said payment by clicking on the link provided in the email. Once the link has been clicked, a window opens in the browser where the bank details are requested. If the requested data is entered and the “Pay and continue” option is clicked, a new page will open where a supposed password received by SMS from the victim’s mobile is requested, but at this time the cybercriminals will already have in their possession the card details. In case of entering any data and clicking on accept, the user is redirected to a new page where a username and password are requested. When the requested credentials are entered, it always returns an error, even if they are correct. In addition, if you click on access with Digital Certificate or DNIe, it indicates that this functionality is disabled, and if you try to register a new user, it returns an error indicating that it should be tried later. Always remember to follow the recommendations As we always recommend, whenever you receive a communication from the Post Office or from any other public organization, you must access it through the electronic headquarters of the entity making the communication. Remember to always check the URLs before opening a link. To avoid being a victim of this type of deception, we recommend that you follow these tips that come to us from INCIBE: Do not open emails from unknown users Check links before clicking Distrust strange links (shortened structures, strange names …). Distrust attachments that contains an email. Always update your programs and operating system. Change your password periodically and create a secure one. >