The PIX payment system will only start working next month, but scammers are already taking advantage of the arrival of the new thing to steal data from careless Internet users. Online security company Kaspersky revealed that cybercriminals have used technology usage logging as a theme for phishing scams.
According to the company, the scammers create messages with the name of a well-known bank to simulate a registration system to use Pix. The objective is to steal credentials such as account password, CPF and cell phone, in order to gain access to the user’s future account and carry out improper transactions.
According to Fabio Assolini, an expert at Kaspersky, the scam found by the company uses a form on a fake website, which is disseminated with a link. Those responsible for the scam distribute the URL via email, one of the most popular ways to send phishing attacks.
How to avoid phishing scams
Pix goes into effect in Brazil on October 5th and promises to make payments and transfers easier. The system will use identification keys such as CPF and telephone number during transactions, which has increased criminal interest in the information.
To ensure that your data will not be collected in phishing scams, the tip is to always be on the lookout for emails that look suspicious. Also, when opening links, make sure the website you were redirected to is genuine.
If you are not confident in the security of a website, avoid giving out personal or banking information. The same goes for payments too. “If the address consists of a nonsense set of characters or the URL looks suspicious, don’t complete the payment,” says Kaspersky.