China-based hackers luring Indians into fake Tata Motors scam. A malicious free gift campaign posing as a Tata Motors offer was found by cyber-security experts in India on Thursday. Chinese hackers have implicated in the operation.
After receiving several links over WhatsApp relating to a free gift offer from Tata Motors. The research branch of the New Delhi-based CyberPeace Foundation began gathering browser and system information. Along with cookie data from users.
The research team said that the campaign is not from TATA Motors. But the post was not on the TATA Motors website, it was on a third-party domain, which made it more suspicious.”
If a user accesses the link from a device such as a smartphone on which the WhatsApp program is installed. The site’s sharing capabilities will launch the WhatsApp program on the device, allowing the link to be shared with others.
It was noted that the awards were maintained “very appealing” in order to entice “laymen.”
TATA MOTORS CARS, CELEBRATES SALES IN EXCESS OF 30 MILLION,” reads the heading of the phony website.
There is a congrats message with enticing pictures of a Tata Safari automobile that shows on the landing page. The message offers readers to engage in a short survey in exchange for a free TATA Safari automobile.
A part that seems to be a Facebook remark area appears at the bottom of the page. And many people have expressed their appreciation for the offer, according to the findings.
China-based hackers luring Indians into fake Tata Motors scam
After clicking OK button the user gets three chance to win the award.
Once he or she successfully completed all of the tries they will awarded a TATA SAFARI.
“Thank you so much. In the TATA SAFARI, you have crowned the winner!!” To shared on WhatsApp. If they hit the “OK” button, according to instructions.
To finish the progress bar, the user must then click on the WhatsApp button. This website takes users to various adverts’ websites once they click on a green “Complete registration” button. And the advert’s sites vary depending on how many times a user has clicked on the button.
According to the experts, fraudsters utilized Cloudflare technology to conceal the true IP addresses of the front-end domain names utilized in the Tata Motors campaign to give away free items to those who visited their websites.
The course of the study disclosed it. The researchers discovered a domain name that had been requested in the background and was tracked to China.
Following an investigation, the CyberPeace Foundation. So, think tanks and grassroots non-governmental organizations comprised of cybersecurity and policy experts. As well as Autobot Infosec Private Limited came to the conclusion that the websites in question.
Were operating as an online fraud operation.
However, the third-party domain go the advertise not the official Tata Motors website.
According to the foundation such social media statements should be avoided.