One of the methods used by hackers this year that Fortinet’s FortiGuard Labs analysts noticed is to use a generator fake Amazon gift cards. Thanks to this, they are able to rob their victims of cryptocurrencies or data, including credentials for accessing e-commerce sites, credit card numbers or home addresses.
Legal gift cards are often used to make purchases on Amazon. FortiGuard Labs analysts recently detected a malicious file called Amazon Gift Tool.exe. It was found in a zip file located on a publicly accessible file repository page. It is not known exactly how this tool was presented to potential victims, but criminals most likely advertised it as a free Amazon gift card generator.
Of course, a tool that provides free gift cards does not exist. However, the hope of getting something for free can be stronger for many people than common sense. In this case, when the victim runs the fake card generator, it unpacks and runs the malicious winlogin.exe, which monitors the victim’s clipboard. The purpose of this software is simple. If a victim tries to add money to their bitcoin wallet by copying and pasting its address, the malware overwrites the victim’s wallet address in the clipboard with its own, and the money may end up in the attacker.
Another scam recently observed by FortiGuard Labs analysts is related to with game consoles. With the ongoing global shortage of ICs, customers are still struggling to get their hands on next-gen consoles such as the PlayStation 5 and the Xbox X and S series, which debuted late last year.
FortiGuard Labs researchers recently identified a series of malicious PDF files on the web with titles such as “how_much_do_xbox_s_cost_on_Black_Friday” and “Walmart_black_Friday_ps5_pickup”.
The first page of each PDF uses a CAPTCHA code to prove that the user is a human. The Continue button on the same page does not work as expected as the user is redirected to the website right after clicking the CAPTCHA checkbox. According to information from the Web Filtering database managed by FortiGuard, it was used for phishing. As a result, the victim may be prompted in the future to provide confidential information, such as, for example, credentials for online shopping sites, credit card numbers or home address.
As criminals use social engineering to deceive their victims, it is important to address these challenges in good time. The most effective tool in the fight against spam, malicious links and email attachments is secure email gateway with advanced mechanisms to detect and respond to malicious messages.
Companies have a significant educational role, and they are encouraged to train their staff on the latest phishing techniques. In particular, employees should be sensitized not to open attachments from people they do not know and to always be careful about e-mails from unrecognized or untrusted senders. Improved tests for recognizing emails containing malicious attachments or links are also helpful.