Warning out vs 'Italian security' phish campaign

Talk about an Italian job.

 

Computer users were warned Monday against a new phishing campaign that urges them to activate a "new security system" in exchange for their private data.

 

Security vendor Bitdefender said the scam appeared to target Italians, as it poses as a message from Italy’s post office and bank operator, Poste Italiane.

 

"The fake e-mail officially informs customers they can no longer use the prepaid PostePay service if they don’t activate the new web security system of Poste Italiane by August 16th, 2013," it said in a blog post.

 

Customers were instructed to activate the new security system by "confirming" their identification data by accessing a link to a login page.

 

At the login page, users must fill in personal information such as user name, password, card ID or security card number.

 

"Filling in the form gives the crooks pretty much everything they need to access any cash in the compromised accounts, impersonate the victims or use that data in fraud or future spam campaigns," Bitdefender said.

 

It added the scam is built around the launch of the Poste Italiane new security system last February 1, to make the con more credible and boost its chances of success.

 

The new web security system allows customers to make secure payments such as recharging PostePay, phone cards, or pay bills online.

 

"With Poste Italiane, for instance, people may continue to fall for this kind of attack because this postal service and bank at the same time has as customers mostly elderly, people from rural areas or inexperienced teen-agers. They can’t or won’t properly receive the warning messages the service providers, media or security companies send, making them easy targets for crooks," Bitdefender said.

 

Not first attack

 

Bitdefender said the attack came a few months after another attack targeting Poste Italiane customers.

 

It involved a con asking users to confirm their login data this time for maintenance reasons.

 

The stolen information is stored in a plain text file on the same compromised server that hosts the phishing form, making the attack way worse - the data will be available not just to the attackers but to "anyone who knows how to use a search engine to find valid CC info."

 

Bitdefender advised computer users to Poste Italiane, CartaSi or any other institution, if they have any suspicions about the email.

 

"As a rule, always avoid giving out credit card information, especially when you need to disclose your PIN or CVV info. Banks and other institutions working with money never ask clients to change IDs or passwords via e-mail. When in doubt, pick up your phone and call or pay them a visit to make sure. Also, install anti-virus software and keep it up to date," it said. — TJD, GMA News