The cybercrime industry continues to recruit muleteers to be able to easily access stolen money without being exposed to being traced, especially with the rise of online banking through the use of mobile applications.
Cybercriminals require profiles of all kinds to be able to act and not all of them need technical knowledge, according to the latest report from ESETa software company specializing in cybersecurity.
This is the case of the muleteers, people who accept a job offer through the Internet to manage collections and payments, conducting bank transfers from your own account. Without knowing it, they are helping to launder money that has been obtained through ‘phishing’.
They are, as they point out from ESET in a statement, “the last link” and is more exposed in the chain of cybercrimesince muleteers “are a fundamental piece in many criminal campaigns, since their work allows stolen money to reach the hands of criminals.”
In a first phase, criminals are responsible for getting the victim to install a malicious ‘app’ or provide your login credentials With the single-use code that entities they usually send to confirm the operations.
Once this access to the account and the possibility of making money transfers is obtained, the muleteers come into play, in charge of receiving the money from the victims’ accounts and forwarding it to the criminals in exchange for a small commission.
JOB OFFERS SENT TO THE MOBILE
The advertisements and job offers to attract muleteers continue to take place, as stated by ESET, and campaigns are even beginning to be observed that carry out their sending directly to users’ mobile phones indiscriminately without indicating the company that is allegedly hiring, but underlining the amount of money they offer and the possibility of working from home.
Such job offers typically provide the recipient with a phone number that, based on the initial code, is registered in the United States. In ESET they point out that this falls within the script of cybercriminals, who thus aspire to project an image of a completely legal company and can even provide supposed contracts to gain the trust of the user.
In the case of accepting this type of offer, the user is collaborating with criminals in the illicit transfer of money obtained from criminal activities. This can lead to criminal consequences in the event that the authorities carry out an investigation. from the accounts of victims of Trojans and bank phishing.
Job advertisements are usually aimed at potential muleteers who reside in the same country as the victims, as has been verified when police operations have been carried out.
If they offer you easy money, be suspicious!
— National Police (@police) April 11, 2022