Skip to main content

A new WhatsApp Scam : Amazon's 30th anniversary celebration free gifts!

Awareness is necessity

One of my friend sent a message yesterday asking me to take a survey to claim free gifts as part of Amazon’s 30th Anniversary celebration.

Did you receive this kind of message ?

If yes then beware !!!
It’s a new whatsapp scam. "


Letme inform you first that according to WIKIPEDIA Jeff Bezos founded Amazon in July 1994. Now count the years . It's only 26 years. And here in the title they mentioned a 30th anniversary celebration.

There are several ways to identify the link whether it is original or fake.

When users click on the message, a new window opens saying “Congratulations, you have been chosen to participate in our survey”. Users are asked to answer four questions. After the user submits the answers , Bunch of gift boxes appears on the screen asking user to make a selection. In most cases it is the Huawei Mate 40 pro .

I marked red squares on screenshots , when you try to click on that button or sign-in label , they are unclickable. This is a sign of a phishing/fake page. Then this website asks users to share the quiz with “5 whatsapp groups” and “20 friends”.

Never Do this

You are becoming a part of such a scam unintentionally and spreading it to more people. Providing some personal information on such websites can be dangerous .

When you click on complete registration button, it will redirect you to fake links. Keep in mind while visiting such fake websites that it will redirect you on malicious links and pop-ups and then when we download, its something else. It maybe any worm or any encrypted malware. Some bad people can use such links to spread/install malware in your device.

You can see page redirection fake links in below images.


So the motive behind this article is to spread awareness about this kind of WhatsApp scam. As cybercriminals are becoming very smart day by day, they are using new ideas to make people fool and gather informations.

Labels:

Comments

Post a Comment

Please do not enter any spam link here.

Popular posts from this blog

How to Pass CompTIA Security+ SY0-701 in 2 Months (839 Score Breakdown + Resources)

How I Scored 839/900 on CompTIA Security+ SY0-701 — 2-Month Prep Strategy That Actually Worked Score: 839/900  |  Exam: CompTIA Security+ SY0-701  |  Prep Time: 2 Months  |  Total Questions: 76 (including 3 PBQs) I'm not going to sugarcoat it — CompTIA Security+ is not easy, but it is very passable with the right strategy. I cleared it with an 839 out of 900, and in this post I'll share exactly how I did it, domain by domain, so you can replicate the approach without wasting time. My 2-Month Study Plan Month 1 — Domain-by-domain study: Read, take notes, and build comparison tables and mnemonics for tricky concepts. Month 2 — Heavy practice testing: Full focus on practice tests and PBQ simulations. Time management drills every session. The biggest mistake people make is spending 90% of their time reading and only 10% practicing. I flipped that in month 2 — and it made all the difference. Domain 1 — General Security Concepts What to focu...
Post a Comment
Read more

Splunk in Plain English — A Practical SOC Guide

Imagine you are a detective, and every device on your network — servers, laptops, firewalls, cloud systems — is leaving footprints everywhere. The problem is there are millions of footprints every single day, scattered across thousands of different files. Your job is to find the one set of footprints that does not belong. That is exactly the problem Splunk solves. It is the platform that collects every footprint from every device, puts them in one place, and gives you the tools to find the suspicious ones — fast. In this blog, I will take you through Splunk from absolute scratch — what it is, how it works under the hood, how to write SPL queries like a pro, how to build dashboards and alerts, how to set up a SOC lab, and most importantly, the interview questions you will definitely face if you are going for a SOC analyst role. I have completed the TryHackMe Advanced Splunk rooms including SPL exploration, SOC lab setup, dashboards and reports, data manipula...
Post a Comment
Read more

Email Security Deep Dive: 13 Steps to Keep Your Emails Safe

Email Security Checklist The Email Security Checklist 1. Enable SPF (Sender Policy Framework) What it is: SPF is like a guest list for your email domain. It tells the world that only specific servers are allowed to send email for your domain. How it works: Publish an SPF record in DNS. When someone receives an email claiming to be from your domain, their mail server checks if the sending IP is listed in the SPF record. If the IP is not listed, the email is rejected or marked as spam. Example SPF record: v=spf1 ip4:203.0.113.0/24 include:_spf.google.com -all Only servers in the specified IP range and Google’s mail servers can send emails for this domain. Others are rejected. Points to Note: Prevents attackers from spoofing your domain and sending phishing or spam emails. 2. Enable DKIM (DomainKeys Identified Mail) What it is: DKIM is a digital signature for each email, ensuring that the message hasn’t been tampered with. Ho...
Post a Comment
Read more

Protecting Yourself from Vishing & Smishing frauds in India

Awareness is necessity Vishing & Smishing fraud is a type of scam that involves the use of text messages and Voice calls to trick individuals into revealing sensitive personal information such as bank account details, passwords, and credit card numbers. This type of fraud has become increasingly common in India, with many people falling victim to these scams every year. In this blog, we will discuss what Vishing & Smishing frauds are, how it works, and what steps you can take to prevent falling victim to these scams. What is Vishing & Smishing Fraud? Vishing & Smishing fraud is a type of social engineering scam that involves the use of text messages and Voice calls to trick individuals into revealing sensitive personal information. The term "vishing" is a combination of "voice" and "phishing," which refers to the use of voice calls to trick individuals into revealing personal information. In "Smishing" fraud, scammers use t...
Post a Comment
Read more

What If your Private Information leaked without your consent?

Awareness is necessity In today's digital era, privacy is a major concern for everyone. With the increasing use of technology, it has become easier to share one’s personal information online. However, it also imposes the risk of information being misused or leaked without one’s knowledge. One such example is private photos getting uploaded on illegal websites or the dark web without your knowledge or consent. If you ever find yourself in such a situation, it is important to take immediate action to protect your privacy and rights. In this blog, we will discuss what to do in accordance with Indian Law if someone uploads your private photos on illegal websites or the dark web. File a complaint with the Cyber Crime Cell The first step you should take is to file a complaint with the Cyber Crime Cell of your city or town. This can be done either online or by visiting the nearest police station. Here you can call cybercrime helpline number 1930 immediately or you can regi...
Post a Comment
Read more

ઓટીપી, ડેબિટ કાર્ડ, ક્રેડિટ કાર્ડ દ્વારા થતા બેન્ક ફ્રોડ પ્રત્યે જાગૃતિ અને અગત્ય સૂચના : સાવચેત રહો

Awareness is necessity જ્યારે પણ તમે ઇન્ટરનેટ પર વ્યક્તિગત વિગતો શેર કરતા હોય ત્યારે સાવચેત રહો. " "જ્યારે પણ તમે તમારા મોબાઇલમાં એપ્લિકશન ઇન્સ્ટોલેશન દરમિયાન 'allow' પરવાનગી આપો છો ત્યારે સાવચેત રહો." સાયબર સ્વયંસેવક તરીકે, મેં આ પ્રકારની છેતરપિંડીઓના કેટલાક કેસ નું અધ્યયન કર્યું છે. ચાલો હું તમારી સાથે એક કેસ સ્ટડી શેર કરું !! એક વ્યક્તિ OTP(વન ટાઇમ પાસવર્ડ) ને લઈને તેના મોબાઇલમાં સતત મેસેજીસ મેળવતો હતો. આ OTP તેના મોબાઇલ પર ઇન્સ્ટોલ કરેલા એક તૃતીય-પક્ષ એપ્લિકેશન દ્વારા આપમેળે કોઈ બીજા સાથે શેર થઈ રહ્યા હતા અને અચાનક, તેના ખાતામાંથી પૈસા ડેબિટ થયા, અને 7-8 ટ્રાન્ઝેક્શન સંદેશાઓ પછી, તેનું એકાઉન્ટ સ્ટેટમેન્ટ ખાલી હતું. પીડિત દ્વારા પ્રાપ્ત કેટલાક સંદેશાઓ અહીં છે. The secret OTP for online purchase is 222343 on card ending XXXX. Valid till HH:MM:SS. Do not share OTP for security reason. Rs. 9999 is Debited to A/c...XXXX on dd-mm-yy HH:MM:SS( Avlbl Bal Rs XXXXX) At POST TID-XXXXXXXXXX,ref-XXXXXXXXXXXX. TollFree XXXX...
4 comments
Read more