Fraudsters are impersonating electronic diary services and the Russian Ministry of Education and Science portal.
Cybercriminals have initiated a new deception method, posing as electronic diary services and official websites of the Russian Ministry of Education and Science. Their primary objective is to illicitly obtain account credentials from teachers, students, schoolchildren, and their parents, as reported by experts from F6 company.
Cybersecurity specialists have identified an extensive network of phishing websites. Access to these malicious sites is designed to appear as if it requires entry through the Unified Identification and Authentication System (ESIA). Unsuspecting victims are then directed to authorize their access on a page that is an exact replica of the official government service login form.
Upon submission of their login, password, and the unique six-digit SMS code, attackers immediately gain unauthorized access to the victim`s “Gosuslugi” (Public Services) account, the company confirmed.
In addition, there have been recorded instances where cybercriminals contacted individuals, falsely presenting themselves as employees of the relevant ministry. They would claim a “new law” necessitated the provision of a “character reference” that supposedly influenced a child`s university admission or even future employment prospects. Using this pretext, fraudsters guided individuals to a deceptive website, instructing them to log in and “retrieve” the required document.
A notable surge in this type of fraudulent activity was observed between August 8th and 18th, during which at least four distinct malicious resources employing these tactics were created.
Previously, analyses of cybercrime revealed the most common “professions” adopted by scammers. It was found that fraudsters frequently impersonate postal workers, delivery service personnel, or financial regulators. A more recent tactic involves the creation of fake brands mimicking well-known marketplaces and retail chains.
Clement Ashworth 
Barnaby Whitfield