A group of Indonesian hackers who had targeted Apple account holders at the end of last year and had been identified by McAfee now attacks those of Amazon.
In November 2018, McAfee Labs successfully identified a phishing kit known as 16Shop. It is used by hackers to target Apple account holders, in the United States and Japan in particular. The classic hacker technique is to send an email to users, which is attached to a contaminated PDF file, which redirects the trapped user to a page with real appearances, inviting him to update his personal information, providing the details of his credit card. The group behind 16Shop will also ruthless to Amazon customers since May.
Pieces of similar codes
To achieve this result, McAfee analyzed the kit code contained in emails sent to Amazon customers and compared it to the code inserted into e-mails addressed to Apple users. The computer company found that the second code had similarities with the original 16shop kit of November 2018.
McAfee also discovered that the profile photo of social networks belonging to cybercriminals had been replaced by a modified Amazon logo, thus confirming the thesis that the same group was behind the phishing operation.
Other companies and users will be targeted in the future
The author of the famous kit would use the pseudonym DevilScreaM and would be part of an Indonesian group of hackers, called the " Indonesian Cyber Army ". Going back to Amazon, McAfee Senior Security Researcher Oliver Devane believes that " the victims of this kit will be directed to malicious websites via links in phishing emails ." The US security firm has identified more than 200 malicious URLs directed to the phishing kit.
" It is expected that these types of groups will use other companies as bait in the future, " warns Oliver Devane. While the group behind 16shopcontinues to develop its kit to target more and more Internet users, users are encouraged to be vigilant and must go to the Amazon site rather than clicking the link contained in a suspicious email.
0 Comments