Alexander Chernov, head of cyber intelligence at Innostage CyberART,

[tanjimajuha20]

ictoria Varlamova, Head of Brand Protection at Angara Security, believes that the main goal of the attackers is collecting data, including for attacks on supply chains: "The goal of the attackers in the described case is to collect and verify the maximum amount of data on specialists who are critical to the business. Thus, confidential accounting documents contain a large layer of personal data with job titles and salary amounts. The attackers can then use this data belgium whatsapp resource themselves for targeted phishing attacks on highly-income specialists, or for resale. The collected documents also contain signatures of employees; the attackers can add these or falsified documents to phishing resources to inspire more trust in users. In addition to the personal data of employees, such documents contain information about counterparties and transactions between them. In addition to selling this data, the attackers can also use it to plan attacks on the supply chain and hack target companies through partners."

called such attacks a special case of phishing, the ultimate goal of which is the theft of financial resources: "Such phishing attacks aimed at obtaining accounting documents or other confidential data on the work of an enterprise can be part of a complex phishing campaign aimed at the theft of financial resources. Accounting information often includes confidential data on the financial status of a company, its operations, tax reporting and other financial aspects. Leakage of this data can lead to a breach of confidentiality and negatively affect the reputation of the company, as well as bring legal problems."

"This method of deception does not represent anything new from a technical point of view, but is simply another psychological trick used by fraudsters. Mass calls of this kind are limited by existing anti-fraud tools," said a representative of the press service of PJSC MegaFon. - We protect all our subscribers from fraudulent calls. The company has implemented special automated systems that, based on analytical algorithms, identify and filter out such calls. Due to the operator's internal filters, in the first quarter of 2024, we blocked 244 million calls and 91 million SMS. Calls that reach the subscriber are identified by the virtual secretary Eva. When a call comes in, she shows the subscriber a warning about the source of the call on the phone screen: "bank", "online store" or "mass calls".

A representative of the press service of OOO T2 Mobile (Tele2) in response to a request from ComNews noted that for the telecom operator, calls from fraudsters using such schemes will not differ from other fraudulent calls: "If the call is made with the substitution of the calling number for any number of a Russian operator, for example, to disguise themselves as government agencies, it will be detected and blocked by the Antifraud system. It should be noted that attacks using such a scheme are not mass - they are prepared in advance and carried out with an eye on specific victims. In such cases, subscribers should immediately contact law enforcement agencies."