![[-]](https://fuerteventura.click/images/collapse.png "[-]")
14-01-2023, 08:27 PM
Radio Sintonia:
web spoofing, the cybercrime that has led the Civil Guard to investigate an alleged perpetrator of a scam of more than 800 euros in Lanzarote.
In a statement from the Civil Guard it has been reported thatthe @ Team of Lanzarote, in the course of the investigation, clarified a crime of fraud committed through the technique of "web spoofing", the alleged perpetrator of the fact made a publication of the rental of a property on a well-known online platform, managing to divert the attention of the victim to a cloned web page, of similar characteristics to the original, reaching a bank transfer for the amount of 843 euros, Events that occurred on the island of Lanzarote.
Initiation of the investigation
The Civil Guard became aware following a complaint filed in March 2022 in dependencies of the Main Post of San Bartolomé, of the commission of a scam taking advantage of the interest of the injured in the rental of a home through a website of recognized solvency. Therefore, after carrying out the necessary steps through the Internet and accessing through a (fraudulent) link to the cloned website to view the photos of the property and other features for rent, it carried out the corresponding bank transfer for a total amount of 843 euros.
In addition, the injured person subsequently realized that he had been the victim of a scam, since he could never contact the advertiser again or receive a telephone call from him within the agreed period.
Finally, the components of the @ Lanzarote Team, within the tasks entrusted in the exercise of their specific functions in the field of Cybercrime, collected all the data on the Events that occurred and carried out the appropriate Police investigations, identifying the alleged perpetrator of the fact, being a citizen residing abroad.
In this type of attack, cybercriminals carry out the publication of properties for rent on web pages cloning the original, to generate confidence in the citizen and make the payment of the agreed price with social engineering techniques.
Safety tips. What is WEB SPOOFING?
Web Spoofing consists of the impersonation of a real web page by a fake one in order to perform a fraudulent action. The fake website adopts the design of the web that is intended to impersonate and even a similar URL. A more sophisticated type of attack involves creating a "shadow copy" of the entire World Wide Web to get the victim's traffic to pass through the attacker, thus obtaining all the victim's sensitive information.
This type of attack manages to redirect a victim's connection through a fake page to other websites with the aim of performing some fraudulent action associated with phishing to obtain information, such as usernames and passwords, of the victim's traffic. In addition, it is possible for the attacker to send data to the servers of real pages on behalf of the victim or from any web server to the victim.
Protect corporate systems from hacking attempts
Web spoofing is hardly detectable; perhaps the best measure is a browser plugin that shows at all times the IP of the visited server: if the IP never changes when visiting different web pages it will mean that we are probably suffering this type of attack.
Another way to prevent this type of spoofing is to avoid using hyperlinks. For example, instead of using a link in an email, write the web url yourself. In addition, it is advisable to avoid using the same password on all websites since in case of having been victims of this attack the damage will be less.
If it has been determined that the website has been the target of impersonation, it will be necessary to collect information about it. This information will help identify the fraudulent website, determine if the customer's information has been stolen, and learn the identity of the attacker. It will be appropriate to go to court to report information theft and trademark misuse, as well as quickly contact the Internet Service Server (ISP) responsible for hosting the fraudulent website for removal. Contact the registrars on the name server to perform the same function.
For more details you can contact the Press Office of the Civil Guard Command of Las Palmas, Contact telephone number 928320400, extension 1610181/82.
web spoofing, the cybercrime that has led the Civil Guard to investigate an alleged perpetrator of a scam of more than 800 euros in Lanzarote.
In a statement from the Civil Guard it has been reported thatthe @ Team of Lanzarote, in the course of the investigation, clarified a crime of fraud committed through the technique of "web spoofing", the alleged perpetrator of the fact made a publication of the rental of a property on a well-known online platform, managing to divert the attention of the victim to a cloned web page, of similar characteristics to the original, reaching a bank transfer for the amount of 843 euros, Events that occurred on the island of Lanzarote.
Initiation of the investigation
The Civil Guard became aware following a complaint filed in March 2022 in dependencies of the Main Post of San Bartolomé, of the commission of a scam taking advantage of the interest of the injured in the rental of a home through a website of recognized solvency. Therefore, after carrying out the necessary steps through the Internet and accessing through a (fraudulent) link to the cloned website to view the photos of the property and other features for rent, it carried out the corresponding bank transfer for a total amount of 843 euros.
In addition, the injured person subsequently realized that he had been the victim of a scam, since he could never contact the advertiser again or receive a telephone call from him within the agreed period.
Finally, the components of the @ Lanzarote Team, within the tasks entrusted in the exercise of their specific functions in the field of Cybercrime, collected all the data on the Events that occurred and carried out the appropriate Police investigations, identifying the alleged perpetrator of the fact, being a citizen residing abroad.
In this type of attack, cybercriminals carry out the publication of properties for rent on web pages cloning the original, to generate confidence in the citizen and make the payment of the agreed price with social engineering techniques.
Safety tips. What is WEB SPOOFING?
Web Spoofing consists of the impersonation of a real web page by a fake one in order to perform a fraudulent action. The fake website adopts the design of the web that is intended to impersonate and even a similar URL. A more sophisticated type of attack involves creating a "shadow copy" of the entire World Wide Web to get the victim's traffic to pass through the attacker, thus obtaining all the victim's sensitive information.
This type of attack manages to redirect a victim's connection through a fake page to other websites with the aim of performing some fraudulent action associated with phishing to obtain information, such as usernames and passwords, of the victim's traffic. In addition, it is possible for the attacker to send data to the servers of real pages on behalf of the victim or from any web server to the victim.
Protect corporate systems from hacking attempts
- USE antivirus, firewalls, and other tools, and perform frequent scans of computers and devices to prevent malware infections.
- KEEP your personal and business computers up to date: pay attention to security alerts, update security patches, perform regular system checks.
- Make sure your email accounts are well protected and don't communicate your password.
- DO NOT CLICK on attachments that you are not expecting, even if they have names that sound harmless (for example, invoice). They often contain malicious code that gives access to control of your emails and the activities of your computers.
- ENABLE the SPAM email filter and block access to suspicious or blacklisted websites.
Web spoofing is hardly detectable; perhaps the best measure is a browser plugin that shows at all times the IP of the visited server: if the IP never changes when visiting different web pages it will mean that we are probably suffering this type of attack.
Another way to prevent this type of spoofing is to avoid using hyperlinks. For example, instead of using a link in an email, write the web url yourself. In addition, it is advisable to avoid using the same password on all websites since in case of having been victims of this attack the damage will be less.
If it has been determined that the website has been the target of impersonation, it will be necessary to collect information about it. This information will help identify the fraudulent website, determine if the customer's information has been stolen, and learn the identity of the attacker. It will be appropriate to go to court to report information theft and trademark misuse, as well as quickly contact the Internet Service Server (ISP) responsible for hosting the fraudulent website for removal. Contact the registrars on the name server to perform the same function.
For more details you can contact the Press Office of the Civil Guard Command of Las Palmas, Contact telephone number 928320400, extension 1610181/82.