Phishing campaigns are usually distributed by a wide variety of media. Email is usually the most common, but we also find attacks that are distributed over closer networks such as WhatsApp. Now, a new attack tells you that you have a chance to get a free Rolex watch, but it is phishing on WhatsApp.
This attack has been alerted by Panda Security . The message that is being distributed by the messaging applications shows a link with a preview in which it is stated that a free Rolex is given as a celebration of the centenary of the brand, despite the fact that it was founded in 1905 and its centenary was in 2005.
Fake website that promises to give a Rolex as a gift
Hackers have gone to great lengths to carry out this attack. So much so, that the web is so real that it has managed to bypass the vast majority of antivirus on the market. To do this, it has SSL security certificates to have HTTPS. Also, if the domain is scanned in VirusTotal, only an antivirus detects it as malware.
When entering the web, a web with a mobile interface appears, which makes sense because the attack is made to be distributed through WhatsApp and most users will open it on a mobile phone. From there, a questionnaire of 4 simple questions is shown, such as if you know Rolex, how old are you, what opinion do you have of the brand, and if you would recommend the watch to friends. If you answer the questions, three “attempts” appear to get the gift.
In one of them he always ends up touching the watch, a Rolex Submariner, valued at 37,700 euros . To “receive” it, it is said that you have to send the link to 5 groups or 20 WhatsApp friends so that they know about the promotions. Later, it must be shared, and after that, it asks us for personal information to receive the gift, which we will never receive. The one who will receive our data will be the attacker, who can use it for all kinds of attacks. The website also introduces cookies that collect the profile of each person who enters the website.
Seek to obtain your data and those of your contacts
This website is a clear copy of another phishing website that has occurred in other countries. In the United States they have already managed to collect the data of 55,000 people with this attack, while we still do not know the extent in Spain, although hundreds of people have already fallen. To give it an air of legitimacy, false comments appear claiming to have received the gift, with other comments from people complaining that they did not get anything in the giveaway to make it look more realistic. The texts are noticeable that they are translated with a translator, since they have some language errors.
Therefore, we must be careful when clicking the links that pass us through WhatsApp, and be wary of any type of raffle that does not come from official stores or from the official accounts of the brands themselves on social networks such as Instagram or Twitter.