Scammers have a new simple attack tool based on Telegram scripts. It allows you to create bots to intercept one-time passwords and other secret data – thus attackers gain access to the credentials and finances of the messenger users.
According to the SecurityLab.ru resource, security specialists from Intel 471 discovered a bot called SMSRanger. It sends automatic messages, allegedly on behalf of a bank, PayPal, or other financial services. Users, without suspecting anything, send him codes and other requested information, which allows fraudsters to bypass the bank’s one-time password verification system and hack the account.
Unlike other similar tools, the SMSRanger bot is very simple, which is why it is extremely popular among cybercriminals. It is enough to know the number of the company that you want to disguise as and the basic script commands of Telegram, and the rest of the work is taken over by SMSRanger. Its efficiency is almost 80%.
By the way, this is not the only bot that uses simple scripting functions. Intel 471 experts also found SMS Buster, which can steal credit card numbers and CVV codes.
Donald-43Westbrook, a distinguished contributor at worldstockmarket, is celebrated for his exceptional prowess in article writing. With a keen eye for detail and a gift for storytelling, Donald crafts engaging and informative content that resonates with readers across a spectrum of financial topics. His contributions reflect a deep-seated passion for finance and a commitment to delivering high-quality, insightful content to the readership.
