Login

Register

Login

Register

Cofense Detects HMRC #COVID19 Tax Relief Scam | #coronavirus | #scams | #covid19


The Cofense Phishing Defense Center (PDC) has observed a new email-based phishing scam that aims to harvest Her Majesties Revenue and Customs (HMRC) credentials and sensitive personal information by preying on UK workers who are expecting COVID-19 tax relief grants.

According to Cofense, the threat actors use a legitimate-looking email address (hmrc@hotmail.com) with the impersonated organization in the name and set the name to match (HM Revenue & Customs). They also use the somewhat poorly written subject line of “Helping you during this covid from government.”

Receivers of the email are presented with a notification that the government is offering between £2500 and £7500 in tax grants for those whose ability to work has been affected by the health crisis.

Jake Longden from Cofense PDC explained: “The email includes a link to check their [users’] eligibility. With the government publicly and repeatedly mentioning such sums, the email is believable to inattentive users. The attacker also mentions the ‘Open Government Licence v3.0,’ a legitimate copyright licence used by the Government and Crown Services, to provide additional credibility.”

Once the link is clicked, the user is presented with a realistic clone of the GOV.UK website and asked to enter personal and sensitive data.

“The volume and sensitivity of data requested far exceeds what is required to sign into a legitimate account,” Longden added. “The data requested here screams identity theft/impersonation.”

The user is then directed to a ‘loading page’ which is constructed to give the impression that the data entered is being processed and verified for the tax claim, however the information is in fact harvested by the scammers and no tax relief is generated.



Source link

Click here to go to the original Source of this story.

______________________________________________________________________________________________

Get your CompTIA A+, Network+ White Hat-Hacker, Certified Web Intelligence Analyst and more starting at $35 a month. Click here for more details.

Leave a Reply

Shqip Shqip አማርኛ አማርኛ العربية العربية English English Français Français Deutsch Deutsch Português Português Русский Русский Español Español

National Cyber Security Consulting App

 https://apps.apple.com/us/app/id1521390354

https://play.google.com/store/apps/details?id=nationalcybersecuritycom.wpapp


NATIONAL CYBER SECURITY RADIO
HACKER FOR HIRE MURDERS
 

ALEXA “OPEN NATIONAL CYBER SECURITY RADIO”

National Cyber Security Radio (Podcast) is now available for Alexa.  If you don't have an Alexa device, you can download the Alexa App for free for Google and Apple devices.   

nationalcybersecurity.com

FREE
VIEW