 |
| Source: Group-IB. List of Classiscam APAC targets ranked by number of brands impersonated. |
Group-IB, a global cybersecurity leader headquartered in Singapore, has found that the scam-as-a-service operation Classiscam is continuing its worldwide campaign well into 2023.
In a new blog post, Group-IB analysts detail how the automated scheme uses Telegram bots to help create ready-to-use phishing pages impersonating companies in a range of industries, including online marketplaces, classified sites, and logistics operators. These phishing pages are designed to steal money, payment data, and recently in some cases, bank login credentials from unsuspecting Internet users. In addition, the phishing templates created for each brand can be localised by editing the language and currency featured on the scam pages.
According to Group-IB’s findings, 251 unique brands in a total of 79 countries were featured on Classiscam phishing pages from 1H21 to 1H23. One logistics brand was impersonated by “Classiscammers” targeting users in as many as 31 countries. Within the Asia Pacific (APAC) region, the country with the highest number of brands targeted by Classiscammers was Australia (34.6% of the regional total). Other heavily affected countries were India (11.5%), Hong Kong (10.3%), Singapore (7.7%), Sri Lanka (7.7%), and Malaysia (5.1%).
