“PostalFurious” phishing gang targets UAE users with SMS campaign

A Chinese-speaking phishing gang known as PostalFurious has been linked to a new SMS campaign that targets users in the UAE. The fraudulent scheme involves sending users bogus text messages asking them to pay a vehicle trip fee to avoid additional fines. Unfortunately, clicking on the link provided in the SMS directs unsuspecting recipients to a fake landing page designed to capture payment credentials and personal data.

Fake landing pages are used to capture payment credentials and personal data

The fake landing page is designed to mimic an official payment page, making it difficult to distinguish it from the real page. As such, it is estimated that the campaign is still active as of April 15, 2023. The URLs from the texts lead to fake branded payment pages that ask for personal details such as name, address, and credit card information. Unbeknownst to users, this data is captured and used for fraudulent financial activities.

“Geofenced Phishing Links” to Stay Undetected

To remain undetected, the phishing links are geofenced. This means that the pages can only be accessed from IP addresses based in the UAE. This makes it harder for security experts to track down the gang. However, security researchers explain that this is a common tactic used by cybercriminals to avoid detection.

New phishing domains are registered every day

The cybercriminals behind the PostalFurious phishing gang have been observed registering new phishing domains every day to expand their reach, making it even more difficult for security experts to track down the gang and stop their operations. This also demonstrates the transnational nature of organized cybercrime.

Postal Service Operations Demonstrate Transnational Nature of Organized Cybercrime

As we can see from the PostalFurious phishing gang’s operations, cybercrime knows no borders. This transnational nature is one of the reasons why it is challenging to fight cybercrime. PostalFurious’s operations show the extent to which organized cybercrime can operate across borders and the sophistication of their tactics.

Recommendations to stay safe

To avoid falling prey to such scams, it’s advisable to practice careful clicking habits when it comes to links and attachments. Users should keep their software up-to-date and practice strong digital hygiene routines. It’s also essential to scrutinize the authenticity of any payment page before entering any personal data or payment information.

Operation Red Deer targets Israeli organizations

In a similar postal-themed phishing campaign called Operation Red Deer, various Israeli organizations have been targeted to distribute a remote access trojan called AsyncRAT. Cybersecurity analysts suspect that there may be connections between PostalFurious and Operation Red Deer. Therefore, experts are warning organizations and individuals to remain vigilant and take all necessary precautions.

PostalFurious’s phishing campaign is a clear indication of the sophistication of modern cybercrime. The group’s transnational nature and tactics make it challenging to track and prosecute those behind these types of schemes. Organizations and individuals must remain vigilant to avoid falling prey to phishing attacks. Ultimately, it is essential to stay informed, keep your software up-to-date, and use cybersecurity best practices to protect against such attempts.

Explore more

Ethereum Uses AI Swarms to Proactively Patch Network Flaws

The architectural integrity of global decentralized networks has reached a pivotal juncture where the speed of malicious exploitation often outpaces the traditional cadence of human-led security audits. To address this widening gap, The Ethereum Foundation has fundamentally transitioned its security strategy from a reactive model to an automated, proactive defense paradigm that leverages the power of machine learning. This shift

How Is ERP Modernization Driving DLA to Audit Readiness?

The Defense Logistics Agency currently manages an intricate global supply chain that serves as the backbone for the United States military, requiring an unprecedented level of financial precision and operational transparency to meet modern oversight requirements. This massive undertaking involves a transition from aging, siloed legacy systems to a unified Enterprise Resource Planning environment designed to provide real-time visibility into

What Makes Odyssey Infostealer a Global Threat to macOS?

The long-standing myth that macOS remains immune to sophisticated cyberattacks has been decisively shattered by the emergence of the Odyssey infostealer, a highly specialized malware variant engineered to bypass modern system integrity protections. This transition represents a fundamental shift in the threat landscape, where the historical security-by-obscurity advantage once enjoyed by Apple users has entirely vanished. As the adoption of

Can AI Secure Windows Without Compromising Stability?

The sheer scale of modern software development has reached a point where manual code review is no longer sufficient to protect the billions of devices running Windows across the globe. As lines of code multiply and interdependencies become more complex, traditional security measures are struggling to keep pace with the rapid evolution of sophisticated digital threats. In response to this

Xero Launches JAX to Redefine Accounting with Agentic AI

Small business owners have historically spent an exhausting amount of time tethered to spreadsheets and receipts, but the emergence of agentic AI is finally turning those static records into a living, breathing financial command center that operates with minimal human oversight. With more than five million global subscribers now integrated into its ecosystem, Xero is spearheading a movement toward Accountable