Beware: How Facebook Ads Can Lure You to Fake Websites and Steal Your Credit Card Data

Facebook Users Targeted by Scam E-Commerce Network

In a recent discovery made by Recorded Future’s Payment Fraud Intelligence team on April 17, 2024, a sophisticated scam e-commerce network targeting Facebook users has been unearthed. This fraudulent operation, now known as ERIAKOS, relies on a network of hundreds of counterfeit websites to dupe unsuspecting victims into divulging their personal and financial information.

Modus Operandi of ERIAKOS

The ERIAKOS scam leverages brand impersonation and malvertising techniques to deceive users. By utilizing a common content delivery network (CDN) called oss.eriakos[.]com, the scammers aim to create a facade of legitimacy to trick individuals into sharing sensitive data.

The malicious actors behind ERIAKOS have ingeniously crafted these fake websites to mirror legitimate e-commerce platforms, making it challenging for users to differentiate between a legitimate site and a fraudulent one. This deception is a key component of their strategy to defraud unsuspecting victims.

Impact on Facebook Users

Facebook users must remain vigilant in light of this scam, as falling prey to ERIAKOS could result in severe consequences. The theft of personal and financial information poses a significant threat to individuals, with potential ramifications ranging from financial loss to identity theft.

By targeting a platform as widely used as Facebook, the perpetrators of ERIAKOS have access to a vast pool of potential victims. The popularity of the social media giant provides scammers with ample opportunities to exploit users’ trust and familiarity with the platform, increasing the likelihood of success for their fraudulent scheme.

Protecting Yourself Against ERIAKOS and Similar Scams

Given the sophisticated nature of the ERIAKOS scam and the evolving tactics employed by cybercriminals, it is essential for users to adopt a proactive approach to safeguard their personal information. Here are some key measures individuals can take to protect themselves against ERIAKOS and similar scams:

1. Exercise Caution When Sharing Personal Information


Be wary of websites or platforms requesting sensitive details such as credit card information, social security numbers, or login credentials. Legitimate organizations typically do not ask for such information via unsolicited means.

2. Verify Website Authenticity


Before making any online purchases or providing personal information, verify the authenticity of the website. Look for HTTPS encryption, contact information, and customer reviews to assess the legitimacy of the site.

3. Install Security Software


Utilize reputable security software to protect your devices from potential threats. Anti-malware programs and firewalls can help detect and prevent malicious activities, including phishing attempts and malware infections.

4. Stay Informed


Stay updated on the latest cybersecurity threats and scams to remain informed and better equipped to recognize and avoid potential dangers. By staying informed, you can proactively protect yourself against evolving cyber threats.

By implementing these proactive measures and exercising caution while engaging with online platforms, users can mitigate the risks posed by scams like ERIAKOS and protect their personal and financial information from falling into the hands of cybercriminals.