Cybercriminals are again trying to extort money via a fake payment operator’s website. In this case, they used Google’s brand.
Experts from CERT Orange Poland have noticed increased traffic on the domain posing for a Google service. Cybercriminals are attempting to extort money under the guise of paying arrears on Google Play or Google Maps. The amount that is supposed to be paid is small and oscillates around PLN 1-2, the victim receives an SMS or an email about arrears.

The person that wants to settle the payment is redirected to a website posing for the payment operator’s site. Scammers hope that the victim will not double check the website address, enter the login and password for electronic banking and confirm the “transfer”, which in fact adds a trusted recipient to their account.
At this point, the victim may lose all savings from the bank account.

CERT also provided a list of fake Google domains.