Venmo, the payment transfer app owned by PayPal with over 40 million users, is being leveraged in a phishing campaign. Users are receiving texts that state their Venmo account will be charged if they do not log on and decline the charge. A login page is provided that asks the targeted user to input their phone number and password, but a valid password is not necessary as users were able to continue on without providing the correct password. Further verification is requested, and users are then asked to enter their debit card number amongst other personal information. Scammers are using a similar font and color scheme that is seen on the legitimate Venmo page. Venmo has been made aware and they assure they are taking all the necessary steps to mitigate the issue. A company spokesperson said Venmo “never sends our users emails requesting information (of) this nature.”
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.