Rising Phishing Scams Targeting the Indian Electric Vehicle Industry
2 min read
CloudSEK investigates Electric Vehicle related phishing campaigns exploiting advances in the sector, and Google Ads, to steal users’ data and money
New Delhi (India), March 2: CloudSEK today released Unearthing the Million Dollar Scams Targeting the Indian Electric Vehicle Industry, highlighting a large-scale phishing campaign targeting Electric Vehicle (EV) consumers and businesses. It is notable that the scams increased considerably after the production-linked incentive (PLI) scheme, for electric and hydrogen fuel cell vehicles, was approved by the cabinet in September 2021.
CloudSEK’s in-depth investigation has revealed that scammers are exploiting Google Ads to misdirect users to phishing sites that collect users’ data and money. With each site defrauding users of INR 200,000—400,000, in booking fees and down payments, the scam has so far cost the Indian public over INR 40— 80 Million.
Overview of the Phishing Campaign
Since the second half of 2021, CloudSEK’s flagship digital risk monitoring platform XVigil has detected a spike in phishing campaigns impersonating EV manufacturers and dealerships. Scammers propagate this scheme by:
- Registering fake domains that resemble legitimate domains of EV manufacturers and marketplaces.
- Creating Google Ads for the fake domains, and manipulating SEO, such that these ads are top results for generic searches as well as searches for specific EV brands .
- Directing users clicking on these ads to phishing domains that impersonate the content and images of legitimate websites.
- Collecting users’ information and money in the guise of reservation/ booking fees for a vehicle or a security deposit, through phishing websites, to become an EV dealer.
Impact on Consumers and EV Companies
The phishing campaign has already cost the Indian public over INR 40— 80 million, and this value is expected to increase significantly in the future. Apart from financial loss, users also share Personally Identifiable Information (PII) and banking details, which can be leveraged to orchestrate other social engineering campaigns, and even identity theft. For EV companies, these phishing websites lead to direct loss of business, reputation, and credibility. This could also lead to a general decline in the adoption of e-mobility, an already unfamiliar technology, if users’ first touch point in a phishing campaign.
Addressing Threats to the Growing EV Sector in India
EV companies can mitigate the threats posed by these phishing scams by running awareness campaigns to educate users/ customers about the ongoing scams. They can also report the campaigns to the Cyber Crime Cell. In addition, businesses that are part of the EV sector can implement real-time monitoring of phishing domains with XVigil to identify and suspend phishing websites spoofing their business.
CloudSEK is an AI-driven Digital Risk Monitoring Enterprise. CloudSEK’s XVigil platform helps clients assess their security posture in real-time from the perspective of an attacker. XVigil scours thousands of sources (across the surface, deep and dark web), to detect cyber threats, data leaks, brand threats, identity thefts, etc. To learn more about CloudSEK XVigil, visit cloudsek.com.
Do you have a spam problem on this website; I also am a blogger, and I was curious about your situation; we have developed some
nice methods and we are looking to trade techniques with others, why not shoot me an e-mail if interested.
Heya i am for the first time here. I found this board and I find It really useful & it helped
me out a lot. I hope to give something back and aid others like you helped me.
you are truly a just right webmaster. The web site loading pace is incredible.
It sort of feels that you’re doing any distinctive trick.
Also, The contents are masterpiece. you’ve done a wonderful activity on this subject!
If some one wants to be updated with most recent technologies afterward he must be pay a quick visit this web site and be up to date every day.
Great blog here! Also your web site loads up fast!
What host are you using? Can I get your affiliate link to your host?
I wish my web site loaded up as fast as yours lol
Hello there, just became aware of your blog through Google, and found that it’s really informative.
I’m going to watch out for brussels. I’ll appreciate if you continue this in future.
A lot of people will be benefited from your writing. Cheers!
A person essentially help to make significantly posts I would state.
That is the very first time I frequented your web page and to this point?
I amazed with the research you made to make
this particular post extraordinary. Fantastic task!
Whoa! This blog looks just like my old one! It’s on a entirely different topic but it has pretty much the same page layout and design. Superb choice
of colors!
I constantly spent my half an hour to read
this blog’s articles or reviews all the time along with a mug
of coffee.
Hi, i think that i saw you visited my site thus i came to “return the favor”.I’m trying to find things to enhance my site!I suppose its ok to use some of your ideas!!
Thank you for the good writeup. It in fact was a amusement account it.
Look advanced to more added agreeable from you! By the way, how can we communicate?
my web-site – tracfone coupon