Blocket “Safe Payment / Shipping” PhishingTarget: Buyers and Sellers on Blocket (Sweden)Threat Level: Critical (Bank Account Takeover & BankID Hijacking)Phishing Method DescriptionThis attack targets users of the Swedish marketplace Blocket. Scammers usually contact a seller or buyer via WhatsApp or SMS, claiming they want to use “Blocket Paket” (shipping service) or a fake “Direct Payment” …
Category Archives: Carding
Phishing DHL email
The link above leads to the phishing site: DHL Package Delivery Scam (Smishing/Email Phishing) This phishing campaign impersonates the international shipping company DHL. The email informs the recipient that a package cannot be delivered due to a problem with the address or a failed delivery attempt, creating a sense of urgency. How it works:The email …
Etsy phishing page detected
Etsy Seller Payment Scam (Fake Order Notification) This phishing page is designed to target Etsy sellers by impersonating a legitimate order notification. The page mimics Etsy’s interface and claims that a buyer has purchased an item—in this case, “Jeans schwarz mit …” for €79.50—and that the payment is awaiting release. How it works:The victim (an …
Fake USPS tracking page has been detected
A sophisticated phishing campaign impersonating the United States Postal Service (USPS) is targeting residents with fraudulent SMS and emails claiming an “incomplete address” for package delivery. Victims are directed to a cloned website that steals personal information and credit card details, including CVV and 3D-Secure codes, by prompting for a small re-delivery fee. This phishing …
Continue reading “Fake USPS tracking page has been detected”
Banco Ripley (Chile) phishing page detected
A phishing campaign targeting Banco Ripley in Chile uses smishing and email, directing users to a cloned website that mimics the official login portal to steal RUT numbers, passwords, and dynamic tokens. This Man-in-the-Middle (MitM) attack specifically aims to bypass security measures by harvesting real-time OTP codes to facilitate unauthorized transactions. A Banco Ripley (Chile) …
Continue reading “Banco Ripley (Chile) phishing page detected”
Fake Saudi Post page in Arabic revealed
A phishing campaign targeting residents in Saudi Arabia impersonates Saudi Post (SPL) via SMS to steal personal information and credit card data through a fake “address correction” page. The attack uses realistic clones of the official SPL portal to harvest credentials and intercept one-time passwords (OTPs) for fraudulent transactions. These phishing cases highlight attackers’ use …
Fake Emirates Post pages detected
Threat Analysis: Emirates Post Phishing – Small Fee & Card Harvesting How it works:The victim receives an SMS, email, or messaging app alert claiming a package requires a small delivery fee or customs payment. The link leads to this page, which mimics the Emirates Post payment interface. The victim is asked to provide: Logos for …
DHL phishing page revealed
This screenshot shows a phishing page impersonating DHL, targeting users with a fake package delivery notification. The scam demands a small payment (1.99) to complete delivery and collects full card details, cardholder name, and an ID number (likely a national ID or passport). Threat Analysis: DHL Phishing – Fake “Delivery Confirmation” & Card Harvesting How …