Category Archives: Marketplaces

Advanced Fiat Drainer: Automated Brand Impersonation on Peer-to-Peer Marketplaces

This entry documents a live, multi-stage financial phishing and asset draining operation hosted on transient infrastructure (chilw-order.lat). The interface targets regional consumers of major Japanese classifieds and peer-to-peer marketplaces, specifically cloning the infrastructure of Jimoty (jmty.jp). The Attack Vectors and Social Engineering Heuristics The vector utilizes a sophisticated deployment of manufactured account urgency to neutralize …

Continue reading “Advanced Fiat Drainer: Automated Brand Impersonation on Peer-to-Peer Marketplaces”

A phishing campaign targeting Depop sellers

This set of screenshots shows a phishing campaign targeting Depop sellers. The scam uses a fake “orders suspended” notification and a counterfeit support chat to trick victims into providing full credit/debit card details and billing information. Threat Analysis: Depop Phishing – Fake “Orders Suspended” & Card Harvesting How the scam works: Fake Suspension Notice (1st …

Continue reading “A phishing campaign targeting Depop sellers”

Tise.com fake page detected

Anatomy of a Marketplace Phishing Scam: The Scamsite Intermediary Method This image captures a live instance of a highly convincing phishing campaign targeting users of Tise (tise.com), a popular Norwegian and Nordic second-hand marketplace. The layout mimics an official security notification, utilizing precise brand elements to manipulate the victim under a manufactured state of urgency. …

Continue reading “Tise.com fake page detected”

Fake Account Suspension. Jimoty, ジモティー

This is a highly sophisticated phishing attack targeting users of online marketplaces (like the Japanese service Jimoty). Here is how the scam works and how to spot it. 1. The Trap: Fake Urgency The page displays a message stating that your account has been suspended. It creates artificial pressure by claiming you must “verify your …

Continue reading “Fake Account Suspension. Jimoty, ジモティー”

Poshmark Phishing – Fake Account Restriction & Card Harvesting

This set of screenshots shows a phishing campaign impersonating Poshmark, a popular online marketplace for second‑hand goods. The scam uses a fake “account restricted” notification and a fake support chat to pressure victims into providing full credit/debit card details, personal information, and contact details. Threat Analysis: How the scam works (multi‑step flow): Fake Order Summary …

Continue reading “Poshmark Phishing – Fake Account Restriction & Card Harvesting”

Fake Carousell”Safe Payment” Receipt

Phishing Alert: The “Fake Buyer” Marketplace Scam This screenshot demonstrates a common and dangerous phishing tactic used on classifieds and marketplace platforms (like Carousell, Olx, or Avito). Here is a breakdown of how this scam works to steal your banking information: 1. The Domain Deception Look closely at the URL: carousell.83774920.sale/…. 2. The Emotional Hook: …

Continue reading “Fake Carousell”Safe Payment” Receipt”

Pinkoi Fake Suspension Notice detected

These screenshots show a phishing campaign impersonating Pinkoi (a popular e‑commerce platform for designers and handmade goods) and an associated seller named “Amberlithuania”. The scam uses a fake account suspension notice to trick victims into providing full bank card details and personal information. Threat Analysis: Pinkoi Seller Phishing – Fake “Account Suspended” / Card Verification …

Continue reading “Pinkoi Fake Suspension Notice detected”

IAA phishing page detected (Online car marketplace)

This screenshot shows a phishing page impersonating IAA (Insurance Auto Auctions) , a legitimate online vehicle auction platform. The page is designed to steal victims’ login credentials (email and password) used to access their IAA accounts. Threat Analysis: IAA Phishing – Credential Harvesting How it works:The victim receives a phishing email, SMS, or message claiming …

Continue reading “IAA phishing page detected (Online car marketplace)”