Friday, 3 February 2023

Beware fake booking phishing scam received on whatstapp

 

1. *Started with this

A local borough resident saw an advert on Booking.com, but was directed from the one picture that was posted advising to WhatsApp for details and the sender asked the recipient to contact them first by email so they could receive the booking details and link this way. The scammer asked for email to send link to which never came. When the link arrived it looked dodgy.

Notice how the scammer 'manipulates' the intended victim into clicking through his link instead of the genuine link by stating the booking has an error and to invite guests to verify instead (the scam). The screenshots below highlight this devious scam.

Once they received your email (Check if your email or phone is in a data breach at https://haveibeenpwned.com/ - if your email has been compromised inadvertently, change your password immediately, preferably with 2-factor authentication), the real link never came. Instead they sent the following fake link:-

2. *the fake booking.com cloned url link

When challenged that the link is not trusted, the reply was "don't make the reservation..." as shown in the screenshot chat:-

3. *Booking.com cloned image and fake site

4. *fake link

5. *when challenged the scammer cancels the link

Virustotal reveals the link is suspicious as shown:-

6. *fake link is suspicious

Tripadvisor Rentals verified the website is NOT a genuine Tripadvisor website link:-

7. *Confirmation NOT a genuine Tripadvisor link

The purpose of a scam email is often to get you to click a link. This will take you to a website which might download a virus to your computer, or steal passwords or other personal information. This is sometimes known as 'phishing'.

If you receive a call you believe to be fraudulent, hang up. If you are suspicious about an email you have received, forward it (as a screenshot) to report@phishing.gov.uk. Suspicious text messages (as a screenshot or screen recording) should be forwarded to the number 7726 which is free of charge.

Needless to say do no click on links that turn out of the blue. Take time to research and check this blog for advice and further information on similar scams.

If you believe you are the victim of a fraud, please report this to Action Fraud as soon as possible by calling 0300 123 2040 or visiting www.actionfraud.police.uk.

*(click each screenshot above to view enlarged)

Visit Take Five to STOP, CHALLENGE and PROTECT and to find out more on scams and stopping fraud.

For more detailed information, visit Phishing: Spot and report scam emails, texts, websites and calls.




 


UK Faces New Wave of Drink Spiking: Injection Attacks

As violence against women once again fades from the public eye, a disturbing new trend in drink spiking has emerged – injection attacks. The...