A Cybercrime Group Targeting Tax-Paying Individuals in Mexico and Chile
An organized cybercrime group, known as Fenix, has been actively targeting tax-paying individuals in Mexico and Chile. Their operation involves breaching targeted networks and stealing valuable data from unsuspecting victims.
The Cloning of Official Portals
A key strategy employed by Fenix is the cloning of official portals. They have successfully cloned the portals of the Servicio de Administración Tributaria (SAT) in Mexico and the Servicio de Impuestos Internos (SII) in Chile. By creating identical replicas of these portals, they are able to deceive victims and redirect them to their malicious websites.
Mexico’s Servicio de Administración Tributaria Portal
The Fenix group has cloned the official portal of Mexico’s Servicio de Administración Tributaria (SAT). This allows them to craft a convincing phishing attack that tricks tax-paying individuals into entering their personal information, such as usernames, passwords, and financial details. Once this information is obtained, the cybercriminals can gain unauthorized access to their victims’ accounts and steal valuable data.
Chile’s Servicio de Impuestos Internos Portal
In addition to targeting Mexico, Fenix has also cloned the official portal of Chile’s Servicio de Impuestos Internos (SII). This enables them to carry out similar phishing attacks on Chilean tax-paying individuals. By impersonating the legitimate SII website, they can collect sensitive information and exploit it for their benefit.
Stealing Valuable Data
Once Fenix has successfully redirected victims to their clone portals and obtained their personal information, they can use this data for malicious purposes. Valuable data, such as usernames, passwords, and financial details, can be sold on the dark web or used to commit identity theft. This can have significant financial and personal consequences for the victims.
Fenix, a Mexico-based cybercrime group, has been targeting tax-paying individuals in Mexico and Chile. They utilize the cloning of official portals to deceive victims and redirect them to their malicious websites. Once victims enter their personal information, Fenix can gain unauthorized access to their accounts and steal valuable data. It is crucial for individuals to be vigilant and exercise caution when entering sensitive information online to protect themselves from such phishing attacks.