SASSA Phishing – Fake Verification Page Stealing Personal Information This phishing campaign impersonates SASSA (South African Social Security Agency) , which manages social grants (including the COVID-19 Social Relief of Distress grant) for millions of South Africans. The page is designed to steal recipients’ personal information—specifically their ID Number and Phone Number—which can be used …
Continue reading “South African Social Security Agency phishing page detected”
ING Bank Phishing – Fake Home’Bank Login Page (Romanian Variant) This phishing campaign impersonates ING Bank, a major European financial institution with a large customer base in Romania. The page mimics ING’s Home’Bank online banking interface to steal customers’ login credentials. How it works:The victim receives a phishing email, SMS, or other message claiming a …
Continue reading “ING Home’Bank (Romania) phishing page revealed”
Threat Analysis: Fake Gendarmerie Nationale “Pedophilia Investigation” Sextortion Scam This campaign impersonates the French National Gendarmerie (Gendarmerie nationale) and falsely claims the victim is under judicial investigation for serious offenses (pedophilia, cyber-pornography, etc.). The goal is to extort money, personal information, or both by creating extreme fear of arrest, imprisonment, and public exposure. How it …
Nelson Mandela University Phishing – Fake Login Page Stealing University Credentials This phishing campaign impersonates Nelson Mandela University (NMU) , a major public university in South Africa. The page is designed to steal the login credentials (Username and Password) used by students, faculty, and staff to access the university’s online portals (such as email, learning …
Continue reading “Nelson Mandela University phishing page detected”
Threat Analysis: Banco Regional Phishing – Multi-Step Credential & 2FA Code Harvesting This phishing campaign impersonates Banco Regional, a financial institution operating in Paraguay and other South American countries. The scam uses a multi-page flow to capture the victim’s document number, access password, email credentials, and the transactional PIN (two-factor authentication code) sent via SMS …
Continue reading “Banco Regional S.A.E.C.A. phishing page revealed”
Threat Analysis: Banco República (BROU) Phishing – Credential & Digital Key Harvesting This phishing campaign impersonates Banco República (BROU) , the largest and state-owned bank in Uruguay. The scam uses a multi-step process to capture the victim’s document number, password, and the “Llave Digital” (Digital Key)—a one-time code used for transaction authorization—allowing attackers to bypass …
Continue reading “Banco República (Uruguay) phishing page detected”
Scotiabank Phishing – Fake Login Page Stealing DNI and Password This phishing campaign impersonates Scotiabank, a major international bank with operations across Latin America (including Mexico, Peru, Chile, Colombia, and other countries). The page is designed to steal customers’ online banking credentials—specifically the DNI (national identification number) and password. How it works:The victim receives a …
Threat Analysis: Société Générale Phishing – Fake “Pass Sécurité” & Credential Harvesting This phishing campaign impersonates Société Générale, one of the largest banks in France. The scam uses a two-step approach: first presenting a page about the bank’s legitimate “Pass Sécurité” security feature to build trust, then directing the victim to a fake login page …
Threat Analysis: Banrural Phishing – Full Account Takeover with SMS Code Harvesting This phishing campaign impersonates Banrural (Banco de Desarrollo Rural), one of the largest banks in Guatemala. The scam uses a multi-step process to capture the victim’s username, password, and the SMS verification code (two-factor authentication), allowing attackers to bypass security measures and take …
Continue reading “Banrural bank phishing page in Spanish detected”
Threat Analysis: Crédit Agricole Phishing – Fake “SécuriPass” Security Update Scam This phishing campaign impersonates Crédit Agricole, a major French banking group. The page (which could be an email or a landing page) claims that the bank has detected a malfunction or absence of the SécuriPass security service on the customer’s account. It pressures the …
