Fraudsters promise affected users cash compensation, but to get it, you need to buy temporary social insurance. This type of skam is exploited not only in Russia, but also in Algeria, Egypt, the UAE and other countries.
Fraudsters act on behalf of a fictitious organization – the Personal Data Protection Fund, allegedly founded by the US Federal Trade Commission. On a specially created fake site it is reported that this fund pays compensation to users affected by data leaks, and citizens of any country in the world can receive them.
The user is asked to check if his personal data is in the public domain: for this you need to specify the name, surname, phone number and your pages on social networks. After that, it is reported that his data, including photos, videos, contacts, were found in one of the leaks, which gives the right to receive compensation, calculated in thousands of US dollars. Then the scammers are asked to enter a social security number (SSN), but regardless of whether the user enters a real number or reports its absence, the site gives an error notification and an offer to buy a temporary one for $ 9. The victim is redirected to the payment form – Russian or English, depending on the user's IP address. The price is indicated either in rubles or in dollars, respectively.
“The authors of this scheme most likely speak Russian, since some of its components are very similar to those that have recently been used in the scam in Russia and the CIS countries – mailing lists and announcements about the possibility of winning a large amount in the lottery, receive a reward for the survey, payments from the pension fund, well-paid work as a taxi dispatcher. They offer easy money, but to get it you always need to make a small amount, supposedly necessary as a commission or fixative payment. Now, a scheme has been added to these mailings that exploits problems associated with personal data leaks. Since some organizations already pay the corresponding fines, fraudsters do not stand aside and also try to capitalize on this, ”comments Tatyana Sidorina, senior content analyst at Kaspersky Lab.