City of London and Metropolitan Police arrested eight men for allegedly sending fake messages and trying to trick people into paying a fee to retrieve a parcel, stealing their login credentials in the process.
If you’ve ever wondered about the mechanism behind one of these spam campaigns, take a look at the investigation that ended with the arrest of several people in the UK. It’s a simple enough operation that focuses on a single point of failure. Attackers trick people into revealing their credentials via SMS messages. When they follow the provided link, they see a website that looks like the original and willingly offer the information to attackers.