A method that is widely used Cybercriminals There is creation from all over the world websites Fakes that depict the products or services of recognized companies, there they have access Personal Information and customer banking in a very simple way.

they criminals Implemented the ability to spoof their resource list websites Banks have direct access information Personal banking, incl Access keys Withdrawals to savings accounts money from them.

According to a cyber security company, ESETset Cybercriminals arrived development a website Replaced identity Itau BankAn entity that is present in several Latin American countries and whose image was used by these bad users to attack the savings of users. Brasil and Argentinawho were affected by it page.

How cybercriminals cheated users

Like any other joke in which a company or an official government entity, cybercriminals have created a new one website Very similar to the official one, but url An additional letter was included in the name of this new page. Criminals wrote instead of Itau “Itaur”A barely noticeable difference to users who don’t pay attention to this type of detail.

On the other hand, this minimal difference could allow it page Fraudulent to be placed among the first search results Google with face advertisement.

According to ESETThe aesthetic and functional similarity leads to the fact that consumers do not hesitate to enter them Bank data to access the platform clients. After this procedure, the criminals activate the verification countdown for approx 30 secondsThe time that criminals use to verify the correctness of data in the real system banking entity.

In addition, bypass Two-factor authentication If the data is correct, a screen will also appear asking for a Code Additional confirmation that the user will provide to him criminals without knowing it.

After logging into a user’s account, criminals will show a new screen saying that the website is unavailable, so that the user doesn’t realize they’ve been hacked. deceived. It also shows Url address Bank branch st Argentina It asks to try to log in from this platform, but it will be too late because criminals It will already be logged in savings of customers.

In case of fraud version of bank customers BrasilIt is intended for people accessing a fake url From the email that will be associated with the campaign Phishing which also replaces identity from the bank.

In a statement, Banco Itaú reported: “The site was reported in a timely manner and immediately removed. Channels will not be affected. At Itaú, we are constantly campaigning to raise awareness so that our clients do not fall for any kind of fraud.”

For a cyber security company, these types of customers platforms Vigilance should be possible Scammers To avoid losing this type of savings. For this, people should pay close attention to what kind page Web Visit and if the address is spelled correctly.

It is also indicated that all websites Legitimate cookies include a security certificate provided by the web browser. google chrome And which you can see on the left Url address. As for contacts with the bank, it is advisable to use Links and access provided in the official social networks of these institutions.

Continue reading: