Scammers are targeting UK drivers with a fake DVLA vehicle tax renewal phishing campaign designed to steal personal and financial details. The attack uses urgent SMS or email messages to drive victims to a convincing, counterfeit GOV.UK site that demands payment and sensitive security information to avoid bogus fines. To stay safe, ignore unexpected notifications, …
Category Archives: Carding
Fake ADAC email detected (Allgemeiner Deutscher Automobil-Club)
A phishing campaign targeting ADAC members uses fake “membership issue” emails to direct victims to a cloned portal designed to steal personal and credit card data. The scam creates urgency by warning of payment failures, exploiting trust in the German automobile association to steal login credentials and financial details. Fake ADAC “Membership Payment Update” PhishingTarget: …
Continue reading “Fake ADAC email detected (Allgemeiner Deutscher Automobil-Club)”
Österreichische Gesundheitskasse — Austrian Health Insurance Fund phishing page detected
A phishing campaign impersonating the Austrian Health Insurance Fund (ÖGK) is targeting residents via SMS and email with fraudulent refund claims to steal personal information and banking credentials. The attack leads to a cloned portal designed to capture identity data, credit card details, and bank login information. Austrian Health Insurance Fund (ÖGK) “Tax/Health Refund” ScamTarget: …
Canada Post fake page detected
A Canada Post phishing campaign uses SMS and email, claiming an “incomplete address” to lure victims into paying a small fee on a fraudulent website. This scheme steals full name, address, and credit card details, including 3D-Secure codes, to facilitate larger fraudulent transactions. This Canada Post phishing campaign targets residents with fraudulent SMS/email alerts regarding …
Blocket fake page in Swedish detected
Blocket “Safe Payment / Shipping” PhishingTarget: Buyers and Sellers on Blocket (Sweden)Threat Level: Critical (Bank Account Takeover & BankID Hijacking)Phishing Method DescriptionThis attack targets users of the Swedish marketplace Blocket. Scammers usually contact a seller or buyer via WhatsApp or SMS, claiming they want to use “Blocket Paket” (shipping service) or a fake “Direct Payment” …
Phishing DHL email
The link above leads to the phishing site: DHL Package Delivery Scam (Smishing/Email Phishing) This phishing campaign impersonates the international shipping company DHL. The email informs the recipient that a package cannot be delivered due to a problem with the address or a failed delivery attempt, creating a sense of urgency. How it works:The email …
Etsy phishing page detected
Etsy Seller Payment Scam (Fake Order Notification) This phishing page is designed to target Etsy sellers by impersonating a legitimate order notification. The page mimics Etsy’s interface and claims that a buyer has purchased an item—in this case, “Jeans schwarz mit …” for €79.50—and that the payment is awaiting release. How it works:The victim (an …
Fake USPS tracking page has been detected
A sophisticated phishing campaign impersonating the United States Postal Service (USPS) is targeting residents with fraudulent SMS and emails claiming an “incomplete address” for package delivery. Victims are directed to a cloned website that steals personal information and credit card details, including CVV and 3D-Secure codes, by prompting for a small re-delivery fee. This phishing …
Continue reading “Fake USPS tracking page has been detected”
Banco Ripley (Chile) phishing page detected
A phishing campaign targeting Banco Ripley in Chile uses smishing and email, directing users to a cloned website that mimics the official login portal to steal RUT numbers, passwords, and dynamic tokens. This Man-in-the-Middle (MitM) attack specifically aims to bypass security measures by harvesting real-time OTP codes to facilitate unauthorized transactions. A Banco Ripley (Chile) …
Continue reading “Banco Ripley (Chile) phishing page detected”
Fake Saudi Post page in Arabic revealed
A phishing campaign targeting residents in Saudi Arabia impersonates Saudi Post (SPL) via SMS to steal personal information and credit card data through a fake “address correction” page. The attack uses realistic clones of the official SPL portal to harvest credentials and intercept one-time passwords (OTPs) for fraudulent transactions. These phishing cases highlight attackers’ use …