Another phishing campaign targeting Netflix users. Fraudsters pretending to be Netflix inform that the user’s account has been suspended, and that in order to unblock it, a number of details need to be provided.

The email contains a link that leads to a form in which, in addition to personal data, you must provide the payment card number along with a security code. Providing the above data is supposed to lead to unblocking of the Netflix account.

The website that imitates Netflix is carefully crafted, so be very careful and check the source of your email before clicking on the link.

The ShinyHunters hacker group has hacked the MeetMindful dating site. As a result of the hack, the data of 2.28 million users was revealed.

Hackers released a 1.2 GB database on a hacking forum.

The leaked data include: name and surname, email address, data related to residence, date of birth, location, IP address, password to the portal and Facebook identification data, as well as dating preferences.
The dobreprogramy portal suggests that the stolen data can be used in the so-called sextortion, i.e. blackmail based on the victim’s intimate materials.

You might think that the data stolen by hackers is not controversial, i.e. it does not contain any “rowdy” photos or convers

Fraudsters inform about upcoming changes to the 500+ program and impersonate the Wirtualna Polska portal.

CERT Poland warns against a new campaign, fraudsters convince their victims that the 500+ benefit program will change its form and will be paid in vouchers. However, for more information one needs to log into their Facebook account. For this purpose a fraudulent link to a login page is attached to the message. However, the website itself is under the domain wiadomosciinewsy(.)live.

The goal of fraudsters is to steal data that can be used to steal money using BLIK, i.e. by impersonating a given person and sending messages to friends asking for a loan of a given amount of money.

Fraudsters posing for the Polish Energy Group try to intercept your online banking credentials. Experts from CyberRescue warn against fake SMSs from “PGE”.

In the text of the SMS, the victim is informed about the need to pay the amount due via the page to which the link is provided. If the amount due is not paid, the power will be cut. In fact, the link leads to a fake quick payment service, where the victim submits his / her data directly into the hands of the scammers.

Be careful and do not click hastily on the links, by entering your data you risk losing funds from your account.

A new version of the Joker Trojan, known as Android Joker, has appeared. People who install an application for downloading wallpapers, i.e. Stock Wallpaper, unknowingly download malware on their device.

The purpose of the Trojan is to gain access to messages and, in the next step, to subscribe victim to paid subscriptions. The victim is not able to see the SMS sent and received via the application. The victim learns about the paid subscriptions when they receive their monthly statement from the network operator.

According to experts from Dr. Web the new variant of the Trojan can be used to download and execute arbitrary code, thus it is possible to install a banking Trojan.

IKEA has issued a message warning of fraudsters pretending to be their brand in an attempt to persuade them to act so that they lose money.

IKEA warns against attempts to extort personal data or other forms of fraud, i.e. by persuading people to send Premium SMS messages or participate in lotteries, surveys and other forms of competition. Fraudsters send out messages by email or via social networks informing about the possibility of winning coupons and other IKEA-related prizes.

IKEA emphasizes that all competitions are always published on the IKEA.pl website or on official IKEA profiles on social networks.
Customers are asked not to send any SMS to confirm participation in the competition, as they may be a

A new phishing campaign targeting people who are waiting for a message from the health department regarding the quarantine.

Cybercriminals try to trick smartphone users into installing malicious application. According to Niebezpiecznik, scammers send text messages in which they inform them about being sent to home quarantine.

Text of the SMS: “You have been selected for home quarantine. Download the application to check the next visit by the police https://kwarantanna-domowa(.)com/.”

Niebezpiecznik warns against opening the hyperlink attached to the message, which leads to a website imitating Google Play Store app marketplace. The recipient of the message is prompted to download the “Home Qua

The pre-holiday period is associated with increased shopping, which has been used by cybercriminals. CERT Poland warns against fraudsters pretending to be the InPost shipping company.

Scammers send text messages prompting users to download an app from a fake InPost website. The link included with the message leads to a fraudulent Google Play Store website.

In fact, the victim downloads Cerberus malware, which enables them to steal funds from payment cards and take complete control of the device.

According to CERT Poland, the malicious domain in the received text message is inposted[.].com. Meanwhile, the sender of the message is “ACM”.

If you have received a suspicious SMS, it

Fraudsters send SMS messages to fake payment forms, which are supposed to let users receive money for the goods purchased on the OLX classifieds website.

One of the readers of the dobreprogramy portal has been informed about a suspicious SMS message, which informed about the sale of goods using the OLX website and that if the seller wants to receive the amount due to him, he must use the attached link.
Content of the message: “Your goods are sold using the OLX website. The amount to be collected is PLN 1200: cutt.ly/GhxygVH”. If the portal’s reader would have decided to “collect money” and have found a fabricated form asking for the payment card or online banking login details, he would have an unpleasant surprise due to the loss of m

Data of customers with insurance policies concluded with various companies were available online without any additional security. The leak concerned policies within a period of 5 years from May 2015 to November 2020.

According to the Niebezpiecznik porta, the leak included names, PESEL identification numbers, photos of vehicles, tests of health insured persons, and even electronic versions of policies with the entire data package.

The data concerned clients insured through Ent Broker. According to Niebezpiecznik, dozens of directories with documents concerning the company were publicly available on the server, along with a customer policy folder, which contained 555 subdirectories, each of them related to one customer.

Fraudsters send SMS messages to fake payment forms, which are supposed to let users receive money for the goods purchased on the OLX classifieds website.

One of the readers of the dobreprogramy portal has been informed about a suspicious SMS message, which informed about the sale of goods using the OLX website and that if the seller wants to receive the amount due to him, he must use the attached link.

Content of the message: “Your goods are sold using the OLX website. The amount to be collected is PLN 1200: cutt.ly/GhxygVH”. If the portal’s reader would have decided to “collect money” and have found a fabricated form asking for the payment card or online banking login details, he would have an unpleasant surprise d

Cybercriminals attacked one of the largest Polish online stores, CoffeDesk, selling coffee along with accessories.

As a result of the attack on IT systems, some of the store’s services were unavailable. In the store’s press release, we can read that third parties have gained access to the store’s server as well as the data located on it. CoffeeDesk ensures that user data is neither lost nor exported. The store ensures its customers that payment card details have not been tampered with. However, the store recommends that all its customers change their password for online store, as well as email, online banking and social media.

On the CoffeDesk website, information has been posted that customer login data have been deact

PKO BP Bank has issued a warning message in which it warns against fraudsters posing as the bank’s employees. Under the pretext of security reasons, scammers trick potential victims into submitting confidential data to online banking and installing a remote verification application.

PKO BP Bank reminds its clients that during a phone call bank employees do not ask for passwords to any of its services, i.e. online, mobile, phone and they do not ask to install additional software from the Google Play Store, such as TeamViewer, QuickSupport, AnyDesk, which claim to increase the level of security of operations or access to the website.

Remember that the fraudulent data can be used for unauthorized transactions on your bank acco

The upacjenta.pl website, which offers medical services at home, has informed about a hack into their information and communications services, specifically access to the database of the RIOT Agency, which is the service provider.

As a result of the hack patient data was leaked, such as: personal data along with PESEL identification number, information on health (diseases, test results), contact details.

Customers have been informed about the risk of data theft, and the owners of the website conduct activities together with the Office for Personal Data Protection. However, it was not stated how many records were intercepted by cybercriminals.

Experts from CERT Poland warn against a campaign organized by fraudsters who want to obtain login details to the Allegro portal.

The scam concerns the attractive sale offers for iPhone X on Facebook social network. The cost of the phone is one thousand PLN.

The scammers explain such an attractive price as the last item in stock.
The link in the ad leads to a website that visually resembles the Allegro platform. The person who will try to log in on the fake portal page will provide the credentials to fraudsters.