this post was submitted on 17 Nov 2023
8 points (78.6% liked)

Australia

3605 readers
60 users here now

A place to discuss Australia and important Australian issues.

Before you post:

If you're posting anything related to:

If you're posting Australian News (not opinion or discussion pieces) post it to Australian News

Rules

This community is run under the rules of aussie.zone. In addition to those rules:

Banner Photo

Congratulations to @[email protected] who had the most upvoted submission to our banner photo competition

Recommended and Related Communities

Be sure to check out and subscribe to our related communities on aussie.zone:

Plus other communities for sport and major cities.

https://aussie.zone/communities

Moderation

Since Kbin doesn't show Lemmy Moderators, I'll list them here. Also note that Kbin does not distinguish moderator comments.

Additionally, we have our instance admins: @[email protected] and @[email protected]

founded 1 year ago
MODERATORS
all 16 comments
sorted by: hot top controversial new old
[–] [email protected] 9 points 1 year ago* (last edited 1 year ago) (3 children)

The key thing missing is the URL and I would presume the hacker page wouldn't have a πŸ”’ both things I would be looking at

[–] [email protected] 10 points 1 year ago

These are actually for fake banking apps - not the websites, it's probably more of a concern with Android because of side-loading and how loose the play store is. Also the lock symbol is really easy to get - SSL/TLS is free (Let's Encrypt) and doesn't mean that the website is legit, it just means that what you're seeing is actually www.veryrealcommonwealthbankpage.xyz, not the official Commonwealth Bank site and that all communication cannot be intercepted by a third party

[–] [email protected] 9 points 1 year ago (2 children)

Not only that 'missing the option to hide your password' wtf. That's the opposite of the eye icon.

Absolute panic bait. 'Can you determine the legitimacy of these login pages for banks you don't use based on incomplete data?? THEN YOU'RE IN DANGER!!!"

[–] [email protected] 3 points 1 year ago (1 children)

I stopped right there too. They have it arse about.

[–] [email protected] -1 points 1 year ago

Wow did you not read the article? This isn't about a website login, it's about fake hijacked login screens on apps which last I checked, don't have URLs shown.

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Agreed and I thought the exact same thing, although the website URL and possibly even the SSL certificate details still needs to be checked even with the πŸ”.

[–] [email protected] 7 points 1 year ago (2 children)

Hey ABC, why would I know what other banks login pages look like?

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago)

Given that they remind readers what brands an Android phone phone could be, I don't think the article is aimed at many aussie zoners.

I guess they're trying to drive home that the scammer isn't coming at you with a poorly worded email riddled with typos here - the overlay can look legitimate (even if in some cases it still has typos lol). Probably would've been a bit much for them to cover every banking interface tbf.

[–] [email protected] 5 points 1 year ago

Not gonna lie, only reason I picked the right one on Q3 was cause of the ad.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

Well spotted, there was a spelling mistake.

There was? I just picked the one that had the uglier UX.

Still got them all right.

[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

What is with the borked version number in the real Greater Bank page? That actually caught me out

V 0.0.0 -2

[–] [email protected] 1 points 1 year ago

This is the best summary I could come up with:


The malware is powerful β€” it can record your calls, harvest your contacts, evade antivirus, bypass multi-factor authentication, log what you type and send you text messages.

Exclusive new data obtained by the ABC has uncovered what appears to be the first major distribution campaign of the malware, with Australians identified as specific targets.

This latest campaign against Australians was uncovered by Dario Durando, a senior threat analyst from ThreatFabric, a banking security platform based in the Netherlands.

An advertisement spruiking Octo boasts the malware has a "high survival rate", gives hackers "full device control" and has the ability to steal two-factor authentication codes.

Eward Driehuis,Β vice president of fraud engineering at ThreatFabric, said the group responsible for Octo was Russian-speaking and possibly linked to the Russian cybercrime underworld.

Stephanie Tonkin from the Consumer Action Law Centre said Australian banks weren't doing enough to protect customers, who were being hoodwinked by increasingly sophisticated scams.


The original article contains 1,200 words, the summary contains 153 words. Saved 87%. I'm a bot and I'm open source!

[–] [email protected] 0 points 1 year ago (1 children)

You can always go here to check if it's legit

[–] [email protected] 1 points 1 year ago

The fact I got 2 downvotes means I was successful at least twice.

It gives me so much pleasure πŸ˜‚