Jul 06, 2024

phish sms cra

Fraudsters often target seniors and other vulnerable populations for financial scams. In this case, they sent SMS messages pretending to be from Service Canada informing recipients  that Canada Pension Plan (CPP) and Old Age Security (OAS) pension payment had been postponed. The message is designed to convey urgency and deceive recipients into responding.

The initial SMS message only contained a phone number, but responding with a "Y" resulted in a response from the fraudsters with a fake Revenue Canada website. Clicking the link takes the visitor to a fake website where they are prompted to enter their Social Insurance Number. 

For more information on these types of scams visit https://www.canada.ca/en/revenue-agency/corporate/scams-fraud/recognize-scam.html 

read more

May 22, 2024

phish sms netflix

Fraudsters use security related themes to generate a sense of urgency in order to convince recipients to enter their login information into fake websites. In this case, an SMS message suggests that "due to a system malware issue" the recipient must login to their Netflix account and update their payment information. The phishing domain used in the case contains a misspelling of Netflix. After clicking the link and solving a  Captcha, the user is shown a Netflix phishing page.

read more

Apr 22, 2024

phish sms canadapost

Fraudsters continue to use fake Canada Post phishing sites to entice users into entering their personal information and credit card details. In this case, the SMS message states that the recipient's package is being held and is at risk of being returned unless the recipient updates their information. The domain used contains the text "canadapost" in order to appear legitimate. When clicking the link, the recipient must first solve a Captcha before being shown the spoofed Canada Post page.

Canada Post has some resources available to help identify these types of messages.

read more