With the London Olympics craze, cybercriminals has decided to cash in on it. Global cloud security leader Trend Micro Incorporated successfully monitored bogus 2012 London Olympics ticket site.
The anti-virus software maker warns the public about a phishing website that claims to sell 2012 London Olympics tickets on Facebook. This was spotted earlier this week. The site liveolympictickets.com mimics the official site of the 2012 London Olympics. Once a user clicks on the link from his Facebook wall, he is redirected to this phishing site where he is asked which games he would like to watch live. To buy the ticket to these chosen games, the website asks for the user’s personal and credit card.
“The official website of the London Olympics has a feature that allows users to check if the website selling tickets is legitimate… I’ve confirmed that liveolympictickets.com is unauthorized. After further investigation, I’ve verified that the site is indeed a phishing page set up to capture user information,” said Karla Agregado, Trend Micro Fraud Analyst.
Trend Micro has monitored other newly created domains related to the 2012 Olympics that included keywords, such as ‘2012 London Summer Games’, ‘2012 Olympics Ticket’,’ Britain Olympics 2012’,’ Olympics 2012 Ticket’ and other variations thereof.
Agregado added, “Cybercriminals have always been good in riding and cashing in on bandwagons. The Olympics being one of the biggest events in the world, they see it as opportunity to capture thousands of possible victims. As users, be smarter than these criminals. Check first the authenticity of online vendors before keying in any personal information.”
For more information on how to protect yourself from Olympics-related online threats, visit Race to Security, the Trend Micro security guide to major sporting events.
Exploring the site, clicking on the blue tab Olympic Tickets – Buy Tickets for the London 2012 Olympics leads to other pages within the site that mimics normal online transaction pages, such as details about the items to be purchased. In this case, if the user proceeds with the transaction, he/she can choose which games to watch:
However, towards the end, the user is asked for their personal details:
After this, the site asks the users to continue with the payment by entering credit card details or choosing other payment methods.
The final page shows that the user’s order has been “confirmed”
Be very careful when visiting webpages. Scrutinize every detail, including the URLs or web addresses of the sites being visited.