Classiscam, the scam-as-a-service operation is continuing its worldwide campaign spanning 79 countries and affecting 251 unique brands, according to a report by Group-IB. Telegram bots are used to automate the creation of phishing pages that impersonate companies across various sectors.
Money, payment data, and bank login details are stolen from victims in online marketplaces, classified sites, and logistics operators. Scammers can localise Classiscam’s phishing templates, as well as adjust the language and currency settings, enabling them to victimize users in different countries.
APAC Region targeted
APAC is one of the regions targeted by Classiscammers. Within the APACregion, Australia (34.6% of regional total) has the highest number of brands targeted by Classiscammers. India (11.5%), Hong Kong (10.3%), Singapore (7.7%), Sri Lanka (7.7%), and Malaysia (5.1%) were also heavily affected.
“Classiscam shows no sign of slowing down and the ranks of the Classiscammers are continuing to swell. Over the past year, we have seen scam groups adopt a new, expanded hierarchy, and roles within organizations are becoming increasingly specialized. Classiscam will likely remain one of the major global scam operations throughout 2023 due to the scheme’s full automation and low technical barrier of entry,” Afiq Sasman, Head of Group-IB's Computer Emergency Response Team in the Asia Pacific, said.
Group-IB emphasizes the need to strengthen cybersecurity measures, particularly within the Asia-Pacific region, where reputable brands have been targeted by the scheme.