A clever Gumtree scam
Added 2018-12-04 23:29:55 +0000 UTCThis is one of the most sophisticated phishing scams I have ever seen. The people behind this one are not your average cyber criminals. I hope you find it interesting.
The .apk file is here: https://mega.nz/#!e5FyFIxI!HiKEw09c1A3JToav6mmAmbtlMr7iI71UbOQnWZtDjX8
Thank you again for your support via Patreon
Comments
gum tree is owned by eBay slack ebay aussie have been robbed at gun point on gum tree
Vic King
2021-12-09 13:13:29 +0000 UTCits amazing how many options are available to a smart criminal .. i put my email on ebay ads , i only sell heavy eq. so i always get a few scammers .They always agree to buy immediatly then send me a fake paypal payment then request me to pay the shipping to there shipping agent (fees added to the fake paypal payment) .. then i play the fool for weeks as i like to waste there time ,even saying i am at western union but i am having problems ,cant find the eastern union store , the grms of money shop ? bits of coins how do i do that ?
2020-06-17 13:11:10 +0000 UTCI bet $5 this app is only opening another website where all the magic is happening. Then it's locking out your MAC or IP or both and you can't acces it. It's also likely the scammers are running it on a smartphone as an app, which makes them mobile and hard to locate, but they likely use public Wi-Fi for data. Perhaps even running it on someone else's network by selling them a smartphone online with pre-loaded scam-app running the scam. I'm also guessing you're not handpicked but software is cropping a screenshot of your ad and sending text message to the listed number. This is why Craigslist is hiding the phone numbers of their ads and also why such scam will be very hard to implement on their ads. For that reason, I'm assuming those scammers are only targeting classified ad apps for phones with all the details and seller contact info listed on one page in order to easily access all it's needed for this scam from one place with a simple screenshot and text recognition. Their UK IP makes me think of all that. It smells on Eastern European scam to me. And I'm actually not sure if my comment should be on the web giving food for thoughts to potential scammers who are reading it. Please, delete it if you find it necessary.
2018-12-05 08:20:50 +0000 UTCNo problem Royston. I'm pretty sure there will be a few volunteers to reverse engineer that apk file. But thanks anyway.
Jim Browning
2018-12-05 07:17:46 +0000 UTC
