Marak Phishing UnderHospitals, Understand How It Works!
JAKARTA - Fraud with the mode of digital wedding invitation which was disseminated through the WhatsApp messaging application recently became the talk of the public on social media.
Starting from a post from one of Twitter's @txtfrombrand bases, fraudsters will usually admit to sending wedding invitations in digital form from someone you might know.
In this case, the message usually contains a link that directs the victim to a website under the guise of a wedding site. Then the victim was asked to fill in their personal information such as name, address, telephone number, and financial information.
Embed: https://twitter.com/txtfrombrand/status/1618822564322877440?t=HAv-9WodcDZ8BPeEMUF3Wg&s=19
Once the user fills out the form, the fraudster will collect the information and use it for bad purposes, such as stealing identity or committing financial fraud.
On the other hand, an IT security consultant or expert, Alfons Tanujaya on his website also said that phishing under the guise of a marriage invitation letter can contain APK (Android Package Kit) from outside the Play Store which if installed will steal OTP credentials from the victim's device.
"When this dangerous Android APK is run, there will actually appear some alerts like installing apps from outside the Play Store are very dangerous and not recommended. And when this warning is ignored, another warning will appear when giving SMS access to apps you want to install, including document data and device photos to malicious apps on that install," said Alfons.
However, because it is likely that people are not used to paying attention to warnings when installing the application, Alfons stated that it is easier for them to give approval without reading carefully and understand the consequences of this agreement.
To avoid being exposed to this scam, it is important to always be careful of unknown links or messages, and it is recommended not to click on a link or provide personal information to anyone unknown, especially via the internet.