Desenmascara.me

How to verify whether a website is legitimate or not?: desenmascara.me

viernes, 29 de octubre de 2021

Facebook refuses to drive scammers off its platform because it generates billions of dolars per year in revenue from Deceptive Facebook Ads

 The title of this post is the response to this other article "Facebook does not worry about the online counterfeiting fraud".

Recently I became aware that Facebook (or Meta) has been served with a lawsuit accusing it of actively soliciting and assisting scammers for its own financial gain and to users detriment.  


The whole document is worth a read for pearls like below:

4. Facebook has done much more than passively create and maintain a platform on which scammers can brazenly target users with scams. According to internal Facebook documents, and current and former Facebook employees and contractors recently interviewed by various investigative journalists at prominent publications,4 Facebook actively solicits, encourages, and assists scammers in numerous ways. On the revenue side, according to these investigations, Facebook’s sales teams have presented at conferences heavily attended by known scammers, socialized with known scammers for business development purposes, and met revenue quotas by encouraging known scammers to continue buying Facebook ads. Facebook’s sales teams have also been aggressively soliciting ad sales in China and providing extensive training services and materials to China-based advertisers, despite an internal study showing that nearly thirty percent (30%) of the ads placed by China-based advertisers — estimated to account for $2.6 billion in 2020 ad sales alone — violated at least one of Facebook’s own ad policies. 

5. On the enforcement side, according to these investigations, Facebook has affirmatively directed employees and contractors tasked with monitoring Facebook’s platform for deceptive ads to (i) ignore ads placed by hacked Facebook accounts and pages, as long as Facebook gets paid for these ads, and (ii) ignore violations of Facebook’s Ad Policies, especially by Chinabased advertisers (since Facebook “want[s] China revenue”). 

6. In October 2020, the Federal Trade Commission (“FTC”) reported that about 94% of the complaints it collected concerning online shopping fraud on social media identified Facebook (or its Instagram site) as the source.5   

Let's see how this lawsuit ends up.

jueves, 28 de octubre de 2021

Fraude de inversion con altos rendimientos eliminado a traves de desenmascara.me

Este tipo de scam en ingles es conocido como "High Yield Investment program". Basicamente es un esquema ponzi online. Ahora con el tema de Crypto es uno de los mas populares, pero lleva años en Internet. 

Como funciona?, recientemente me llego este correo de un usuario de desenmascara.me. Veámoslo de primera mano:


La web tenia esta apariencia:





Tras analizarla con desenmascara.me corrobore a través de metadatos que es fraudulenta. Ademas, ciertos patrones de datos de esta web se han incluido en el servicio de desenmascara.me para mejorar la detección de paginas fraudulentas con similares características.

Adicionalmente se ha incluido en VirusTotal, para avisar a la comunidad:


Esta web estaba activa desde hace meses:

El hecho de que ninguna otra compañía detecte todavía la web como fraudulenta, indica que este tipo de fraude, pese a estar en crecimiento, no es tenido en cuenta por la industria de la seguridad de la información. Ello puede ser a que este tipo de actividades fraudulentas pertenece mas al campo del crimen financiero. En este aspecto, existen buscadores, no muy amigables, todo hay que decirlo, como el que proporciona la CNMV. Dicha web tampoco estaba en el punto de mira de los reguladores de mercado:


Por ultimo, viendo el exito que tuve con la eliminacion de otra web fraudulenta que habia estafado mas de $25000 a 40 personas en tres dias, he solicitado tambien la eliminacion de dicha web.

En menos de 2 horas ha sido eliminada:



Si tienes los contactos o recursos adecuados para ayudarme a desmantelar este tipo de fraudes a escala, no dudes en ponerte en contacto conmigo.


miércoles, 20 de octubre de 2021

Desenmascara.me ha impedido un fraude que llevaba acumulados mas de $25.000 en tres días

desenmascara.me el servicio online gratuito para detectar si una pagina web es fraudulenta o no a conseguido frustrar un fraude que en 3 días había estafado mas de $25.000 a 40 personas.


Todo empezó a través de este correo que llego a mi buzón:


Me llegan bastantes correos de gente que tiene dudas ante gestiones online potencialmente fraudulentas o que han sido estafadas y piden consejo. Reviso mails por encima y para optimizar tiempo respondo a los que veo más interesantes y que puedan servir para mejorar el servicio de desenmascara.me. Si deseas ponerte en contacto conmigo con garantía absoluta de que te responda, puedes hacerlo a través del servicio MyPublicInbox.

A dicho usuario le conteste para que me indicase a que pagina web se refería:


Dicho usuario me contesto sin hacer uso de muchas palabras:


Comprobé dicha web en desenmascara.me y a través de diversos criterios del análisis de metadatos fue clasificada como fraudulenta. Abajo se puede ver el mensaje de fraudulenta a través del uso del plugin de Chrome.


Dicha web fraudulenta se aprovechaba del nombre de un conocido proyecto de Blockchain (polkastarter.com). Dicha técnica se denomina Brandjacking. Una vez la web había sido clasificada como fraudulenta, notifique al usuario:



En este momento, también observe que la web fraudulenta estaba alojada sobre una plataforma de hosting que suele ser muy colaborativa en cuanto a la petición de eliminación de paginas fraudulentas, algo que no suele ser muy habitual por temas legales, y como no, de negocio. Así que me puse en contacto con ellos para notificarles que estaban alojando una pagina web fraudulenta. Mi sorpresa fue mayúscula cuando me respondieron a los pocos minutos indicando que dicha web había sido eliminada tras mi solicitud.

Así que con ese sentimiento de alegría y adrenalina que te da el trabajo bien hecho, notifique tambien al usuario que me había informado de dicha web:



Mi sorpresa final vino cuando dicho usuario me contesto:



Identificar a la persona titular de la web es ya asunto de las fuerzas policiales. 
El servicio de desenmascara.me es un recurso gratuito para ayudar a cualquier persona a saber si una pagina web es fraudulenta o no.

Tengo muchas ideas en la cabeza para evitar este tipo de fraudes a escala. Pero para ello necesito los contactos adecuados en instituciones y cuerpos policiales, algo que he intentado pero sin mucho éxito todavía. No dudes en ponerte en contacto conmigo si crees que puedes ayudar. Muchas gracias.


miércoles, 24 de febrero de 2021

Rogue websites: Domain registrars have a duty to disconnect

This is quite a controversial topic thus this post is a placeholder for law/GDPR related articles on this topic.


Article 1)

"The German BGH decision confirms that domain registrars have a duty of care to disconnect domains used by websites dedicated to copyright infringement. It is interesting that the BGH did not see domain registrars as access providers, but still applied the duties of care for access providers to them. This needs to be welcomed as a clarification of open legal issues not only in Germany. That said, it would have been good if the BGH had referred some of the open EU law questions to the CJEU. We will have to wait for another day for a final decision on Union law." 
Rogue websites: Domain registrars have a duty to disconnect, says German BGH. Decision available in German.




Article 2)

The General Data Protection Regulation (GDPR) was adopted by the European Union (EU) and took full

effect on 25 May 2018. Which are the effects to its policy?


 

lunes, 17 de agosto de 2020

Would you say this website is legitimate or FAKE?

 With desenmascara.me I come across the website as in the picture below:

Fig 1: Section of the main site


The web address is like: https://$brand-boutique-montreal.com ( I have masked the brand purposely )

The domain will expire in 73 days since today as per the 2 pictures below:

Fig 2: Domain tools information about domain 



Fig 3: Information provided by desenmascara.me about the domain


With just the above information would you say such website is legitimate or fake?.

Hint: Nowadays it´s not so easy to differentiate FAKE websites among legitimate ones.


lunes, 3 de agosto de 2020

FBI SEES RISE IN ONLINE SHOPPING SCAMS

The U.S. Federal Bureau of Investigation (FBI) today warned of an increased number of reports coming from victims of online shopping scams. 
This is an increasing fraud since few years ago. In 2017 I wrote the paper "Tracking online counterfeiters" and the above FBI alert just highlight what we already knew a while ago.
With the desenmascara.me service I usually receive complains of users who have been lured online. The last example, I have this email in my inbox:

Usually the tips I give to users who write me are:
  1. Fill in a complaint into the nearest LEA office. Also if you are US based you can fill in a complain online here. If you are based in Europe, you can report it here.
  2. Before making any purchase online, verify into https://desenmascara.me the website you are in front of. Still in doubts, you can just ask us.

In the above case, when I tried to analyze the website warned by the user, I noticed that the website had just been analyzed (minutes ago) into desenmascara.me and to my surprise, it was automatically flagged as "Fraudulent!!"



Therefore, my advice to anyone online, before making any purchase online, you can either try to follow all the "FBI tips to avoid being victimized" or simply just type the web address of the website into https://desenmascara.me and in a few seconds you will know whether is fraudulent or not.



lunes, 13 de abril de 2020

Fraudulent websites examples to lure online users

COVID-19 crisis is driving the global growth of e-commerce sales, with millions of citizens worldwide in quarantine shopping for goods online. Online fraud has always been there, but it is specially at the current time when everyone should be fully aware. 

In order to raise some light how these fraudulent websites looks like, below you can find a small extract of real examples of fraudulent websites targeting famous brands but also common goods. All those fraudulent websites were captured and flagged with desenmascara.me and online tool to help you know whether a website is legitimate or not.

If any good is purchased through any of those websites or any other similar, 3 things could happen:

  1. You will not receive any good at all.
  2. You will not receive any good at all and your credit card information and personal data might be stolen
  3. You will receive goods but will be fake and low quality 

Screenshots of fraudulent websites. If you are a brand owner and would like to remove you brand from these list just let me know. This content is just to raise awareness of fraudulent websites trying to lure online users.




Fig 1: Counterfeit-related website targeting KN95 respirators face masks




Fig 2: Counterfeit-related website targeting the Adidas brand





Fig 3: Counterfeit-related website targeting Agatha Ruiz de la Prada brand




Fig 4: Counterfeit-related website targeting the Aldo brand



Fig 5: Counterfeit-related website targeting the Armani brand



Fig 6: Counterfeit-related website targeting the Asics brand





Fig 6: Counterfeit-related website targeting the Calvin Klein brand



Fig 7: Counterfeit-related website targeting the CAT brand



Fig 8: Counterfeit-related website targeting the Clarks brand




Fig 9: Counterfeit-related website targeting the Converse brand



Fig 10: Counterfeit-related website targeting the Desigual brand


Fig 10: Counterfeit-related website targeting the Dr Martens brand



Fig 11: Counterfeit-related website targeting the ecco brand among others



Fig 12: Counterfeit-related website targeting the Giuseppe Zanotti brand





Fig 13: Counterfeit-related website targeting the Golden Goose brand 




Fig 14: Counterfeit-related website targeting the Hogan brand among others



Fig 15: Counterfeit-related website targeting the Hugo Boss brand




Fig 16: Counterfeit-related website targeting the Hunter brand




Fig 17: Counterfeit-related website targeting the Kipling brand




Fig 18: Counterfeit-related website targeting the Moncler brand



Fig 19: Counterfeit-related website targeting the New Balance brand



Fig 20: Counterfeit-related website targeting the Pandora brand




Fig 21: Counterfeit-related website targeting the Pepe Jeans brand



Fig 22: Counterfeit-related website targeting the Petzl brand



Fig 23: Counterfeit-related website targeting the Reebok brand





Fig 24: Counterfeit-related website targeting the Saucony brand




Fig 25: Counterfeit-related website targeting the Skechers brand



Fig 26: Counterfeit-related website targeting the Supreme brand





Fig 27: Counterfeit-related website targeting the Timberland brand




Fig 28: Counterfeit-related website targeting the Tommy Hilfiger brand




Fig 29: Counterfeit-related website targeting the UGG brand


Fig 30: Counterfeit-related website targeting the Under Armour brand



Fig 31: Counterfeit-related website targeting the Vans brand




Fig 32: Counterfeit-related website targeting the Vibram brand




Fig 33: Counterfeit-related website targeting the Football brands



Fig 34: Counterfeit-related website targeting several toys brands




Fig 35: Counterfeit-related website targeting several Sun Glasses brands




Fig 36: Counterfeit-related website targeting bathroom goods brands




Fig 37: Counterfeit-related website targeting kitcheen goods brands