VK Phishing Scam Scheme 2021

Author: @iskatel007
Date: January 16, 2021

Hello, friends! As always, all fraudulent schemes related to social networks are aimed at misleading you and obtaining your login and password information.

The 2021 scam is based on the ability to request an archive from the social network containing all the data collected over the entire existence of your account. Only the user themselves can request this information after logging into their account, and the link to the archive is unique and can only be accessed from the user’s own profile.

How the Scam Works

The attack unfolds as follows: a VKontakte user receives a message claiming that an archive with all their correspondence will be sent to an email address within 24 hours. However, the specified email address clearly does not belong to the user. To cancel the archive delivery, the victim is prompted to log into their account and change their password by following a link, which actually leads to a phishing site.

Once the attacker obtains the victim’s login credentials, they can indeed download the archive containing all the user’s data and use it for criminal purposes. The archive includes not only public information, but also documents uploaded by the user, linked phone numbers, a list of used bank cards, payment history, and more.

Conclusion

The scheme described above once again confirms that in 90% of cases, your accounts are hacked due to your own carelessness and trustfulness.

Stay vigilant.

Prepared by: @iskatel007
Private Detective / Security Analyst / Information Security Specialist / Professional Data Finder and Investigator

• Telegram: @iskatel007
• Wickr Me: iskatel007
• Threema: URT2S2X6

Telegram channel for business security information services (gathering any information, turnkey dossiers, counterparty checks, analytics, consulting, user deanonymization): Go to channel