Cybersecurity experts from “Informzashchita” have issued a strong warning to the Russian public regarding a sophisticated and unsettling new scam. Perpetrators are now adopting a deceptive tactic, posing as professional hackers who claim to have been specifically hired to compromise a victim`s personal data. Following this alarming revelation, they offer to “cancel” the supposed cyberattack in exchange for a fee.
Analysts report that this elaborate scheme typically unfolds in a consistent manner: an unknown sender initiates contact with the victim via a messenger application, asserting that they have received payment to hack into the individual`s private information. To lend credibility to their claim and demonstrate their supposed access, the fraudster often provides the victim with sensitive personal details such as their full name, phone number, address, and, in some cases, even passport data. After this display, the scammer then proposes further communication to negotiate a monetary sum for not disseminating the allegedly stolen information. Cybersecurity specialists underscore that such personal data is frequently and readily available on darknet markets.
A key characteristic of these attacks is their highly targeted nature. Unlike mass phishing attempts, these fraudsters meticulously gather intelligence on potential victims beforehand. They diligently identify specific vulnerabilities and “trigger points” that can be most effectively exploited for blackmail. The primary targets for these schemes often include individuals with varying degrees of public visibility, such as influential bloggers, performing artists, and senior company executives. These individuals typically place a high premium on their privacy and the security of their personal information, making them more susceptible and often more inclined to comply with the fraudsters` demands, according to analysts.
Pavel Kovalenko, the director of “Informzashchita`s” Anti-Fraud Center, highlighted a significant and concerning trend, noting an approximate 30 percent increase in these targeted attacks. He explained that as widespread, mass-oriented phishing and scam schemes become less effective due to increased public awareness, fraudsters are adapting by investing more time and effort into developing complex, personalized attacks that involve thorough victim profiling and tailored approaches.
To mitigate these growing threats, experts strongly advise users to maintain a high level of vigilance and to strictly refrain from responding to any messages originating from unknown or suspicious sources. In the unfortunate event of experiencing blackmail, individuals are urged to immediately contact law enforcement authorities. Additionally, cybersecurity professionals emphasize the importance of practicing robust digital hygiene. This includes:
- Actively avoiding leaving personal data in publicly accessible online spaces.
- Promptly deleting accounts on platforms or services that are no longer actively used.
- Creating and utilizing strong, unique, and complex passwords for all online services and accounts to minimize the risk of unauthorized access.
Previous cybersecurity advisories have also pointed out common pitfalls regarding insecure passwords, highlighting that easily guessable combinations, such as simple numerical sequences or the names of relatives, are particularly vulnerable and can be quickly breached by malicious actors.
Clement Ashworth 
Barnaby Whitfield