Connect with us

Hi, what are you looking for?

HEADLINES

Top 5 schemes cybercriminals are running amid Olympic Games

Kaspersky researchers found fake pages offering to stream various Olympic events, selling tickets for competitions that won’t have spectators, various giveaways and even the first fake Olympic Games virtual currency.

After an unprecedented year-long delay, the 2020 Tokyo Summer Olympics have begun this month. This time, all events are taking place with no spectators, which reduces physical risks – in terms of health and from a cybersecurity point of view (such as data theft using the vulnerabilities of public Wi-Fi at the stadium). However, sports enthusiasts should not forget that cybercriminals will aim to take advantage of fans’ eagerness to watch the Olympic Games by instigating various online fraud schemes.

To get a better overview of how scammers are trying to monetize viewers’ interest, Kaspersky experts analyzed Olympic-related phishing websites designed to steal users’ credentials. As a result, Kaspersky researchers found fake pages offering to stream various Olympic events, selling tickets for competitions that won’t have spectators, various giveaways and even the first fake Olympic Games virtual currency.

  • Live Streams

Unsurprisingly, with more spectators moving from stadiums to online, Kaspersky experts found various phishing pages offering to stream the Olympic Games. Some of them ask for people to register before watching. Usually in such phishing pages, once a user enters their credentials, they might be redirected to a page that distributes different malicious files. Besides having malware installed on their device through such files, users sent their identifying information to untrustworthy hands. After that, scammers may start using such data for bad purposes or sell it on the Dark Web.   

Examples of phishing pages offering to stream the Olympics

  • Fake Tickets

Despite there being no events held with spectators in person this year, fraudsters are not shying away from trying well-tested (yet, somehow still effective) fraud attempts, like selling offline event tickets. Kaspersky experts also discovered pages offering refunds for already purchased tickets.

  • Olympic-Related Entities

Analyzing discovered pages, Kaspersky experts also found examples of phishing pages disguised as official Olympic ones such as a page pretending to be an official website for the 2020 Tokyo Olympics and a page mimicking the International Olympic Committee. The last one, for instance, collects users’ MS Services credentials.

           An example of phishing page mimicking the IOC

  • Gifts

No big public event is complete without fraudsters imitating extremely generous giveaways. Thus, Kaspersky experts also found phishing pages offering to win a TV, ideal to watch the Olympic Games on. This is quite popular and, usually, each user becomes a lucky winner; the chosen ones only need to pay a delivery fee. No need to say, the TV never gets to the deceived user.

  • Olympic Games Token

Finally, and most importantly, Kaspersky researchers found the first ever virtual currency, which is a support fund for Olympic athletes. A fake one. If a user buys the token, the scammers offer to support financially talented sportsmen around the world who are in need.

An example of phishing page offering to buy Olympic Token

“Cybercriminals always use popular sports events as bait for their attacks. This year, the Olympics will be held without spectators – thus, we do not expect a big number of related attacks. Still, we observe that fraudsters have no limit when it comes to creating new ways to take advantage. For example, this year, we discovered an interesting phishing page selling Olympic Games Official Tokens. There is no real equivalent of such thing, that means that cybercriminals are not only faking already existing baits but also come up with their own new sophisticated ideas”, comments Olga Svistiunova, security expert at Kaspersky.

To protect yourself and your close ones from Olympics-related phishing Kaspersky experts recommend:

  • Сheck the link before clicking. Hover over it to preview the URL and look for misspellings or other irregularities.
  • Check the authenticity of websites before entering personal data and only use official web pages to watch the Olympic Games. Double-check URL formats and company name spellings. 
  • Use a reliable security solution, such as Kaspersky Security Cloud, that identifies malicious attachments and blocks phishing sites. 

Advertisement
Advertisement

Like Us On Facebook

You May Also Like

SOFTWARE

MicroWorld's latest offering aims to reinvent cybersecurity in the face of an ever-evolving threat landscape, especially in light of the ongoing pandemic. The cyber...

HEADLINES

When you compare the immense financial losses that a breached company suffers with the much smaller-scale financial transactions taking place on these criminal forums,...

HEADLINES

The vast majority (70%) of all IT teams said the number of phishing emails hitting their employees increased during 2020. This rose to 82%...

Biz Solutions

Kaspersky Cybersecurity On a Budget provides a set of short but actionable recommendations relevant for any company, as well as specific, but still easy-to-follow...

HEADLINES

Globally 66% and in APJ 67% of businesses believe they are data-driven but only 21% globally and in APJ testify to treating data as...

HEADLINES

Gootloader uses SEO optimization and social engineering, a combination that is not commonly seen in malware delivery. The usually recommended safety instructions to overcome...

HEADLINES

According to WorldRemit, there are four industry-wide scams that Filipinos should be aware of this 2021: “email scams, online dating scams, shopping scams and...

HEADLINES

The process of renewals and new license ordering for partners and distributors is now automated and can be done in a few clicks instead...

Advertisement