This article addresses a scam targeting online sellers, particularly those on Etsy, where fraudulent emails impersonate Etsy support and request sensitive information. Sellers are advised to recognize warning signs, protect their accounts, and be wary of suspicious links. Affected: Etsy sellers
Keypoints :
- A new scam targets Etsy sellers through deceptive emails.
- The scam email appears to be from Etsy support with an official-looking PDF invoice.
- Red flags include generic greetings, unfamiliar sender email addresses, and urgent demands for action.
- Scammers use a fake website to steal sensitive information under the guise of account verification.
- Victims may be prompted to provide credit card information, which Etsy does not request during identity verification.
- To protect against scams, sellers should verify email legitimacy and contact Etsy support directly.
- Malwarebytes Browser Guard is recommended for additional security against fraudulent sites.
MITRE Techniques :
- T1491 – Ingress Tool Transfer: Scammers deliver malicious content through disguised attachments and links.
- T1071 – Application Layer Protocol: Scammers utilize email and web protocols to disguise their phishing attempts.
- T1566 – Phishing: The entire scam is a phishing attempt, using emails to deceive recipients.
Indicator of Compromise :
- [Domain] com-etsy-verify[.]cfd
- [Domain] etsy-car[.]switchero[.]cfd
- [Domain] etsy[.]1562587027[.]cfd
- [Domain] etsy[.]3841246[.]cfd
- [Domain] verlflcation-etsy[.]cfd