Social Engineering. Cheating bloggers and hijacking channels.
• Yesterday, a video message was published from a well-known blogger (AICHI Beard), who covers the topic of programming and publishes interesting interviews with developers. The fact is that with the help of social engineering methods, the author was forced to enter data on a phishing resource, after which the account was hacked, and the Telegram * channel was hijacked. After the successful hacking, various binary options, which are a scam, began to be published in the TG channel.
• I don't know all the nuances and details of the technical component of hacking, but that's not the point at all. Just imagine, a person with such experience in programming and IT in general, could be deceived and hijacked by the simplest methods of #SI and phishing. Presented? And now think about how many administrators or ordinary users are subject to similar attacks. Many people are not connected with IT in any way and it is common for them to enter their 2FA password on a phishing resource.
• If we take a situation when scammers write to the channel administrator and offer to buy 10 advertising posts for $ 3000, but for this you need to register on a phishing resource with an entry form via Telegram, what do you think, what percentage of administrators will refuse such a deal?
• As already mentioned, the foundations of social engineering have not undergone significant changes over the centuries — only the forms and details of techniques have changed. That is why always try to think with your head, do not enter data on third-party resources and read S.E. by the hashtag #SI, I often try to publish current methods of divorce of admins (and not only) in Telegram and share interesting information from the world of Social Engineering.
* The channel was eventually restored through TG support. I hope that the author will learn from his mistakes and will no longer get into such a situation.