| PHISHCA |
|---|
| Cybercriminals routinely target Canadians with phishing lures -- often via text messages (also known as "smishing") -- impersonating financial institutions, government entities, telecommunications and other companies. Their goal is to steal banking or credit card data as well as other personal identification information in order to perpetrate fraud or sell this data to other fraudsters. PHISHCA identifies and analyzes phishing threats targeting Canadians. |
|
|
| BLOG |
|---|
|
Phishing SMS Impersonating Bell Canada |
|
Jan 30, 2024 phish sms bell
|
|
Fraudsters Go Local: 407 ETR Phishing |
|
Jan 28, 2024 phish sms 407etr
|
|
More RBC Phishing |
|
Jan 19, 2024 phish sms rbc
The frausdters claim that the recipient's account is "on hold" and that action is required. |
We received a phishing SMS spoofing Bell Canada indicating that there was a billing issue. The fraudsters clumsily append an "https" to the domain and misspelled "network" but it might be good enough to fool some recipients.
In late January, we received some phishing SMS texts spoofing the Ontario toll highway 407 ETR. The domains are similar to the real 407 ETR domain and the encourage the recipients to settle a small outstanding balance.
Yesterday, we received another SMS purporting to be from RBC Royalbank. The text is identical to the one we received a few days ago, but with a new domain: debitholdrbc[.]com.| Phish URL | Date | |
|---|---|---|
|
https://https-bellnetwrkssl1.info/ | 2024-01-30 |
|
https://407web-etr.com/ | 2024-01-29 |
|
https://support-407etr.com/ | 2024-01-31 |
|
https://debitholdrbc.com/ | 2024-01-19 |