MVD Warning: Scammers impersonate communication operators to install malicious software.
Criminals are deceiving Russian citizens into installing malicious software on their devices under various pretexts. The Ministry of Internal Affairs (MVD) of the Russian Federation has listed five widespread fraudulent schemes involving malware in their Telegram channel “Herald of the Russian Cyberpolice.”
According to the announcement, one common tactic involves swindlers posing as communication operators. They request the installation of a specific program, falsely claiming it is necessary to make changes to a banking application. During the call, the fraudsters threaten the potential victim with loss of connection or inability to perform banking operations if they do not follow the instructions.
Another method sees scammers contacting Russians by impersonating bank employees or law enforcement officers. They also urge victims to download software, perhaps to transfer funds to a supposed “safe account” or check bonuses. The MVD noted that in these instances, the criminals exploit the potential victim`s fear of losing money.
Furthermore, the agency reported that scammers engaging in online correspondence identify themselves as employees of Multifunctional Centers (MFC), the Pension Fund, or the Gosuslugi (Public Services) portal. They suggest updating important applications, such as electronic medical records, booking appointments, or verifying personal data. The MVD pointed out that these fraudsters may also ask for a verification code received via SMS.
Finally, cybercriminals persuade victims to install malicious programs by contacting them while pretending to be their friends or colleagues. In this scenario, they send files to Russians, assuring the recipient that the files contain interesting or important content for them. For example, they might claim the file is an important video or document.
The MVD emphasized that in such fraudulent schemes, the files sent often have the .apk extension.
It was previously reported that scammers have started targeting university applicants, impersonating university staff. They send prospective students phishing links to websites designed to look like the official Gosuslugi portal.
