Since the launch of the "Card Disconnection" operation, the Beijing Municipal Public Security Bureau has taken the initiative and taken multiple measures to crack down on the illegal opening and selling of phone cards and bank cards ("two cards").
Recently, in the prevention and rectification of telecommunications fraud cases, the Beijing Anti-Fraud Center launched an investigation into a new type of person who used the phishing website to commit fraud with the online names "Zhi Dao" and "Lin Shao"
< p>Everyone must be familiar with second-hand trading platforms such as Zhuanzhuan Xianyu, but how do these fraudsters carry out online fraud through trading platforms?Tencent Black Mirror has reported on such cases before Taking "Shen Yi" and "Tianwang" as cases, this issue will report to you a case of using a second-hand phishing platform to commit fraud under the online names of "Holding a Knife" and "Lin Shao". "Knife-wielding" is the captain, even if the subordinates cast the net to find the "fish" (victim)
Then the question is: Where are the "fish"?
"Fishermen" usually post product information at lower than market prices on second-hand trading platforms to find target victims. In addition to these users who often visit second-hand trading platforms, in order to find more "fish", "fishermen" will also cleverly use other platforms such as dating and live streaming to attract traffic.
This kind of fraud is quite different from the fraud we have known in the past: fraudsters do not gather in a den offline to eat, live and commit fraud together, but "online love is connected by a thread" - by “Captains” (responsible for setting up fake phishing websites and laundering money) publish information in chat groups or other social platforms and recruit “fishermen” (responsible for finding victims) to commit fraud. These non-professional scammers - fishermen - use their personal accounts to conduct phishing, which is also a "crowdsourcing" real-person fraud. This type of fraud brings new challenges to anti-fraud fights.
Then the question is: Where is the "fish"?
"Fishermen" usually post product information at lower than market prices on second-hand trading platforms to find target victims. In addition to these users who often visit second-hand trading platforms, in order to find more "fish", "fishermen" will also cleverly use other platforms such as dating and live streaming to attract traffic.
Subsequently, the "fisherman" will use the excuse that you don't often use a certain software and the transaction fees on the platform are too expensive to induce you to transfer to other chat software, thereby evading the supervision of the second-hand trading platform.
When the user and the "fisherman" have almost finished chatting and want to pay, the technical boss behind the scenes - the captain will make a strong appearance
The "fisherman" needs to find " "Captain" generates a fake fishing payment link. This link can be generated based on the product and amount specified by the "fisherman". In addition to physical products such as mobile phones, laptops, and electric vehicles, these products also include game skins and how users can pay for them. This requires a capture interface. The so-called interface is to log in to the Suning official website through the Alook browser to capture electronic cards and Wal-Mart electronic cards to purchase virtual cards. Transactions with electronic cards
So how does it turn into real money after purchase? Here we propose "card cancellation". The so-called card cancellation is through interface grabbing. The electronic card purchased by the user has already reached the fraudster's account. , after the secondary sale is converted into a password red envelope, it is usually sold again at a 9.85% discount
And there is the latest backend in the so-called "online banking circle" of "Knife Holder" and "Lin Shao" Taking "Shen Yi" as an example, the old version has more comprehensive backend functions than holding a knife, and also has functions such as "JD Apple 12" and "One-click Card Frame"
"Fisherman" received fake fishing After linking, it will be forwarded to the user and urge the fish to pay in time
Why urge? This link is actually time-sensitive, which can take as little as 5 minutes; secondly, and more importantly, as the "night is long and the dream is long", the fisherman is worried that the longer it is delayed, the easier it will be for users to spot the flaw, and the "fish" they get will slip away.
At this point, do you think the “killing fish plate” scam is over?
Far more than that
If a user finds out that he has been deceived and wants to recover the order, he is very likely to fall into the second trap prepared by the scammer, which is called "follow-up" in the jargon. ". The "fisherman" will tell the user that the order needs to be handled by "official customer service", and the "captain" will often temporarily act as the so-called "official customer service". He will continue to defraud users on the pretext of paying various deposits before refunding.
If the second fraud is successful, the "captain" still needs to share with the "fisherman", ranging from 5,000 to tens of thousands!
For these "captains" and "fishermen", there are nearly ten thousand "silly fish" swimming around on second-hand trading platforms and social platforms every day. As long as they catch one, it is a waste. A delicious meal.
Coordinated operations, full-link attack
In addition to running faster than fraudsters, there is no doubt that anti-fraud is always a team battle mode, which always requires cooperation with business and security Peers reach cooperation and strive for linkage before, during and after the event to achieve full-link confrontation and attack.