Chat app users are being targeted by scammers through deceptive voting messages, leading to potential account hijacking. Exploiting the popularity of voting contests, scammers lure users to fake websites under the guise of interactive voting opportunities. These fraudulent pages mimic real voting platforms, displaying vote buttons and live counters to deceive users into sharing personal data.
The tactic involves tricking users into divulging their usernames and private 6-digit codes, which are then used by scammers to take over accounts. Tatyana Shcherbakova, a Web Content Analyst at Kaspersky, highlighted the perpetrators’ exploitation of users’ trust in online contests that involve voting. By leveraging social engineering tactics and convincing fake interfaces, scammers manipulate user engagement to steal sensitive information, emphasizing the importance of awareness and vigilance to prevent such incidents.
To safeguard against account hijacking scams, Kaspersky recommends the following precautions:
– Enable two-step verification on WhatsApp to enhance security with a required PIN for account access.
– Verify the authenticity of websites before entering personal information, especially when accessed through unsolicited links.
– Refrain from sharing verification codes, as WhatsApp does not request this information from users under any circumstances.
– Utilize reputable security software to identify and block malicious websites and links effectively.