Solar inRights Center: Password Spoofing Scheme Increases Before New Year
Photo: Pixabay
Dmitry Bondar, director of the Solar inRights center of Rostelecom-Solar, said that before the holidays, cybercriminals began to deceive Russians by stealing their credentials to log into various accounts, and then changing them, RIA Novosti reports.
The expert warned that before the New Year, the scheme of fraudsters with theft of citizens' credentials became more frequent. They carry out deception by sending letters allegedly from the security service or service representatives with a request to change the password. By clicking on this button, the Russians get to the attacker's server.
“The old password does not change to the new one, but the fraudster gets the correct credentials to enter the account. Thus, any accounts can be hacked if they are not protected by two-factor authentication, “- warned the director of Solar inRights.
Bondar stressed that the password spoofing scheme is based on basic information security rules. In particular, one of these recommendations involves the regular change of data for logging into accounts.
“Most users have heard about this in one way or another, so when at the end of the year they receive letters from scammers asking them to change their account password, it does not look suspicious,” the specialist noted.
To protect against fraudsters, Bondar advised to set up two-factor authentication for authorization in the most important services: email, social networks, Microsoft Office, online wallets, medical services. Upon receipt of the letter, he recommended not to follow the link from it, but to enter through the application or enter the name of the service in the search engine, in order to change the password.
