PostalFurious Phishing Campaign Targets UAE Residents
Residents of the United Arab Emirates (UAE) have become the latest victims of a phishing campaign dubbed PostalFurious, which uses SMS to lure users into giving their payment details and personal information. The campaign, which originated in the Asia-Pacific region, has been traced to a Chinese-speaking phishing ring. Investigations by Group-IB show that the group is active globally and has been known to create large-scale infrastructure rapidly to avoid cybersecurity tools, and utilizes access-control techniques to dodge automated detection and blocking.
The PostalFurious Campaign
The PostalFurious campaign works by sending scam SMS messages to UAE residents, asking them to pay fees for tolls and deliveries. These messages include shortened URLs that redirect to fake branded payment pages, which request personal information such as name, address, and credit-card details. The phishing pages also take on the official name and logo of the impersonated postal service provider. These pages can only be accessed from UAE-based IP addresses.
The text messages initially impersonated a UAE toll operator; however, a new version was launched on April 29, impersonating a UAE postal service provider. The servers used for the phishing domains in both cases were the same, and the SMS messages were sent from phone numbers registered in Malaysia and Thailand, along with email addresses via iMessage.
Who Is the Angry Postman?
The PostalFurious campaign is targeting members of the public, and Group-IB has confirmed that the group aims to steal payment credentials and personal data from victims. The attacks do not appear to involve malware downloads, and they seem to be part of a broader campaign that could have global implications.
The group previously targeted users in Singapore and Australia by impersonating postal services and toll operators through fake websites. The campaign comes after a similarly themed operation called “Operation Red Deer” was unveiled earlier this week. The spoofing effort targeted Israeli engineering and telecommunications firms with a convincing phishing message campaign impersonating Israel’s postal service.
Protecting Yourself Against Phishing Campaigns
It’s essential to be vigilant to protect yourself from phishing campaigns. Be wary of unsolicited emails, text messages, and phone calls asking for personal information. Verify the source of the message before providing any personal details or clicking on any links. It’s also important to keep software and security tools updated to prevent cyberattacks.
The Bottom Line
PostalFurious is the latest phishing campaign targeting UAE residents. The campaign uses SMS to lure users into giving payment details and personal information. The group behind the campaign is known to create large-scale infrastructure rapidly to avoid cybersecurity tools, and they utilize access-control techniques to avoid automated detection and blocking. The attacks do not appear to involve malware downloads but are part of a broader campaign, which could have global implications. It’s important to be vigilant against these types of attacks and to verify the source of any messages before providing personal information or clicking on any links.
<< photo by cottonbro studio >>
You might want to read !
- The Threat is Real: ‘Hot Pixels’ Attack Steals Data Through CPU Readings
- Pondering the fallout from ABB’s recent ransomware attack and data theft
- “Cybersecurity Alert: Android Screen Recorder App Compromised by Data-Stealing Malware”
- Why Is The White House Insisting On Section 702’s Criticality Without Public Evidence?
- The Dangers of ‘Picture-in-Picture’ Obfuscation Attacks for Stealing Credentials
- The rise of Dark web streaming after Netflix password sharing ban.
- “Houthi-Backed Spyware Campaign Puts Yemeni Aid Workers Under Surveillance”
