Beware of Chinese website: Diwali gift scam to steal users’ personal information.

Beware of Chinese website: Diwali gift scam to steal users’ personal information.

Diwali is a festival of happiness and joy but some scammers try to scam people even during this festive season. They pretend to give Diwali gifts to people and collect their sensitive information. Everyone needs to be more careful with these websites.

With Diwali just around the corner, many online criminals are seizing the opportunity to trick people with bogus free holiday gift offers. Users have been warned of potential scams by India CERT-In (Indian Computer Emergency Response Team). According to reports, a few Chinese websites are sending customers phishing URLs that claim to offer free Diwali gifts. However, the URLs are sent with the sinister aim of stealing users’ private information including their phone numbers, bank account information and so on.

During the holiday season, advertising messages that seem too good to be true must overflow inbox folders, and these offers often come from mysterious sellers. An increase in online engagement and digital transactions has also increased cyber fraud, with 1.5 crore of phishing attacks targeting Indians in the second quarter of this year.

Additionally, the country imposed sanctions on Chinese marketplaces like Shein and AliExpress due to security concerns. It seems that more and more Chinese websites are using free Diwali gifts to entice Indian customers to provide their information.

People now start internet shopping at home before Diwali arrives, and many emails and messages also appear during this time to defraud customers with free Diwali gifts. Fraudsters have started taking advantage of people under the guise of free Diwali gifts. If you have also received such emails or messages, you should exercise caution.

It is highly likely that any social media connection to websites offering free Diwali gifts is an attempt to steal your personal information. An alert issued by India’s Computer Emergency Response Team (CERT-In) claims customers are being targeted with links to Chinese websites that potentially steal sensitive data, including banking information.

Fake messages claiming to be festive offers are spreading across a number of social media platforms (WhatsApp, Instagram, Telegram, etc.), tricking users into clicking on giveaway links and winning raffle tickets. The threat actors’ campaign mainly targets women and invites them to share the link with their peers on WhatsApp, Telegram and Instagram accounts, according to the CERT-In report.

WhatsApp Alert: Expensive Scam Targets Chat App - Thousands Have Been Deceived |

How to identify these frauds?

The information was leaked in a warning sent by India’s computer emergency response team to consumers about links that could lead them to dubious Chinese websites. These text messages, Instagram, WhatsApp, Telegram and other social media platforms are used to distribute these URL giveaways. During the holiday season, the scam mainly targets women and forces them to forward the text messages to their friends and relatives.

Once on the site, the victim is asked to fill out a form with banking information and other personal data. After being prompted to select a giveaway, they then receive a message asking them to share the link to claim their prize. CERT-In warned consumers not to click on suspicious websites and called links with extensions .cn for China and .xyz or .top potentially dangerous.

Phishing is when a caller or messager impersonates a bank representative to obtain your account and credit card information before asking for your one-time password. It is a scam used by crooks to drain huge amount of money from the account by luring people with alluring offers. As individuals have become more skeptical of calls over the past few years, phishing attacks have taken on a new method of operation that includes fake emails and e-commerce sites.

fraud facts: the importance of protecting one-time access codes - cport credit union

Protect yourself from these website links

Be careful not to click on links that take you to shady websites if you want to avoid falling victim to such scams. You should double-check to make sure a link is not a variation, even if it appears to lead to a legitimate website. You can check the legitimacy of the website using Google or another search engine if you have any concerns.

So remember that reputable companies won’t ask you for your login details, credit card information, or other identifying information through surveys. Don’t give out your personal information to anyone unless they have a reputable website, and be careful in general.

Set transfer restrictions for UPI and other transactions through your bank, as these attacks frequently include fake financial activity to minimize any risk you may have.

In addition to being careful when using these websites, customers can avoid fraud by keeping an eye out for messages that ask for their credit card number or other personal information after promising discounts and discounts. inflated benefits. Setting transaction limits for online transactions made with cards and payment apps can also help you minimize damage in the event of a successful phishing attempt targeting bank accounts. More than 13,000 cyber fraud cases, including incidents like a teacher being defrauded after simply opening a WhatsApp link, cost Indians money in FY22, according to the RBI.

edited and proofread by nikita sharma

About Sandra A. Powell

Check Also

How Google’s Latest Anti-Spam Update Could Hurt Your Music Website

For musicians, having an easily accessible website is crucial. However, Google has recently tightened its …