Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

Smishing Triad Hits Pakistan with Fake Texts

June 11, 2024
Reading Time: 3 mins read
in Alerts
Smishing Triad Hits Pakistan with Fake Texts

Cybersecurity firm Resecurity has discovered a new campaign by the notorious cybercriminal group, Smishing Triad, targeting smartphone users in Pakistan. This group specializes in smishing attacks, which combine SMS and phishing to trick victims into revealing sensitive information. Recently, they have been impersonating Pakistan Post, using local phone numbers to lend authenticity to their demands for payment and credit card details to cover supposed additional fees. The activity began in May and peaked in June 2024, with daily messages ranging between 50,000 to 100,000.

The Smishing Triad, originating from China, has previously targeted various regions including the US, EU, UAE, and KSA. Their tactics are consistent: impersonate trusted entities, create a sense of urgency, and steal valuable information. The group has a history of impersonating leading mail and logistics services, and now, they are leveraging stolen databases from the Dark Web, which include citizens’ phone numbers in Pakistan.

The deceptive messages are sent via iMessage and SMS, luring recipients with claims of undelivered packages from well-known courier firms like TCS, Leopard, and FedEx, or urgent account issues. Customers of major mobile carriers in Pakistan, such as Jazz/Warid, Zong, Telenor Pakistan, and Ufone, have reported receiving these messages on Reddit. The most active smishing kits were hosted on domains like “pk-post-goi.xyz” and “ep-gov-ppk.cyou,” which Resecurity has since taken down. These domains were registered through NameSilo, LLC, using anonymous and fake contact details.

The National Cyber Emergency Response Team of Pakistan (PKCERT) has issued a security advisory to encourage citizens to protect themselves from these scams. Telecom operators in Pakistan are being urged to enhance fraud detection and block malicious activity. To defend against such attacks, it is recommended to be skeptical of suspicious messages, verify the source, avoid clicking on links, use security software, and report any suspicious messages to mobile service providers.

Reference:

  • Smishing Triad Targets Pakistani Smartphone Users with Fake Delivery Texts
Tags: ChinaCyber AlertsCyber Alerts 2024Cyber RiskCyber threatcybercriminal groupEUJune 2024KSAPakistansmartphoneSmishing TriadSMSUAEUSA
ADVERTISEMENT

Related Posts

hpingbot Botnet Uses Pastebin C2 Channel

APT36 Targets Indian Defense Linux Systems

July 7, 2025
hpingbot Botnet Uses Pastebin C2 Channel

Hackers Abuse Driver Signing For Malware

July 7, 2025
hpingbot Botnet Uses Pastebin C2 Channel

hpingbot Botnet Uses Pastebin C2 Channel

July 7, 2025
Malicious Firefox Add Ons Steal Crypto Keys

Malicious Firefox Add Ons Steal Crypto Keys

July 4, 2025
Google Removes 352 ‘IconAds’ Fraud Apps

Google Removes 352 ‘IconAds’ Fraud Apps

July 4, 2025
Browser Cache Attack Bypasses Web Security

Browser Cache Attack Bypasses Web Security

July 4, 2025

Latest Alerts

APT36 Targets Indian Defense Linux Systems

hpingbot Botnet Uses Pastebin C2 Channel

Hackers Abuse Driver Signing For Malware

Google Removes 352 ‘IconAds’ Fraud Apps

Malicious Firefox Add Ons Steal Crypto Keys

Browser Cache Attack Bypasses Web Security

Subscribe to our newsletter

    Latest Incidents

    Ransomware Attack Causes Outage at Ingram

    Call of Duty Players Hacked on Game Pass

    RansomHub Claims Theft of Coppell City Data

    Tech Incubator IdeaLab Discloses Data Breach

    Brazil’s CIEE One Exposes 248,000 Records

    McLaughlin & Stern Discloses Data Breach

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial