Nigerian Cybercrime Ring’s Phishing Tactics Exposed

The tactics of a Nigerian cybercrime group have been discovered, together with their elaborate phishing procedures and comprehensive fraud plan.

The findings, revealed by ESET in a blog site submit introduced before currently, pertain to the steps of two people at the centre of a prison organization that resulted in losses of up to $1 million: Solomon Ekunke Okpe and Johnson Uke Obogo.

Okpe and Obogo have now been sentenced to four years and just one yr powering bars, respectively.

Study more on Okpe’s sentence: Four A long time Guiding Bars for Prolific BEC Scammer

 According to ESET, ahead of their incarceration, the cyber-criminals used various fraudulent techniques, such as business email compromise (BEC), get the job done-from-property fraud, examine fraud and credit card cons.

The scammers used phishing assaults as their most important weapon to achieve access to corporate email accounts and trick people today and companies into sending money to them without the need of authorization. They also relied on weak passwords to accessibility the accounts of their targets.

“The takeaway? Constantly use lengthy, intricate, and exceptional passwords or passphrases to stay clear of possessing your accessibility credentials effortlessly guessed or brute-forced,” reads the ESET report.

Following gaining entry to victims’ accounts, Okpe and his group focused staff of companies affiliated with the victims by thoroughly studying publicly obtainable information and facts. The cyber-criminals then composed personalised emails that have been tricky to acknowledge as fraudulent.

ESET also highlighted how the scammers utilized perform-from-residence scams, masquerading as legitimate companies and preying on job seekers. They also prayed on victims making use of romance fraud tactics.

“After gaining victims‘ trust, Okpe and other folks applied them as funds mules to transfer money abroad and acquire income from fraudulent wire transfers,” ESET wrote.

“Many romance scammers borrow from the similar playbook, which can make it easier to recognize and keep harmless from their tips.”

A list of tips aimed at safeguarding individuals from scams like this is readily available in the ESET weblog post.

Some parts of this article are sourced from:
www.infosecurity-journal.com