Latest news with #SeifallahJedidi
Business Recorder
18-07-2025
- Business
- Business Recorder
Cybersecurity firm warns Pakistanis of risks associated with fake QR codes
ISLAMABAD: A renowned cybersecurity company warned Pakistanis about the security risks associated with scanning of fake 'QR codes' designed to steal personal or financial information of businesses and individuals. According to a report of the company released on Thursday, in today's digital world, QR codes are placed on almost everything - from restaurant menus to museum exhibits, and even utility bills and parking lots. People use them to open websites, download apps, collect loyalty program points, make payments and transfer money, and even for charity donations. The accessible and practical technology is convenient for many, including cybercriminals, who have already rolled out a variety of QR-based schemes. Kaspersky experts have identified the top security risks when scanning QR codes. QR codes can direct users to fraudulent websites designed to steal personal or financial information, such as passwords and credit card numbers. Attackers can impersonate legitimate sites, such as banks or streaming services, and trick users into entering their credentials. Some QR codes can trigger the download of malicious applications that compromise the security of the user's device, especially if it is not protected against unauthorized installation. During special events or sales periods like holiday sales, a fake QR code can redirect users to make payments to fraudulent accounts. A QR code can also automatically connect the user to Wi-Fi networks controlled by cyber attackers, allowing them to intercept their communications. 'QR codes are a fertile ground for potential manipulation, especially as they appear in various everyday contexts such as receipts, flyers, and signage. Attackers have nearly endless possibilities to exploit them. As these codes have already become an integral part of our daily lives, it is essential for users to know how to use them safely and responsibly,' says Seifallah Jedidi, Head of Consumer Channel for META at Kaspersky. Copyright Business Recorder, 2025
Biz Bahrain
16-07-2025
- Biz Bahrain
Scan or Scam? Kaspersky experts warn of the risks hidden behind QR codes
In today's digital world, QR codes are placed on almost everything – from yogurt containers and restaurant menus to museum exhibits, and even utility bills and parking lots. People use them to open websites, download apps, collect loyalty program points, make payments and transfer money, and even for charity donations. The accessible and practical technology is convenient for many, including cybercriminals, who have already rolled out a variety of QR-based schemes. Kaspersky experts have identified the top security risks when scanning QR codes: • Phishing and redirection to malicious sites: QR codes can direct users to fraudulent websites designed to steal personal or financial information, such as passwords and credit card numbers. Attackers can impersonate legitimate sites, such as banks or streaming services, and trick users into entering their credentials. • Malware download: Some QR codes can trigger the download of malicious applications that compromise the security of the user's device, especially if it is not protected against unauthorized installation. • Payment fraud: During special events or sales periods like holiday sales, a fake QR code can redirect users to make payments to fraudulent accounts. • Unsafe automatic connections: A QR code can also automatically connect the user to Wi-Fi networks controlled by cyber attackers, allowing them to intercept their communications. 'QR codes are a fertile ground for potential manipulation, especially as they appear in various everyday contexts such as receipts, flyers, and signage. Attackers have nearly endless possibilities to exploit them. As these codes have already become an integral part of our daily lives, it is essential for users to know how to use them safely and responsibly,' says Seifallah Jedidi, Head of Consumer Channel for META at Kaspersky. In order to not fall for a scam when scanning a QR code, Kaspersky experts recommend: • Verify the source: Scan QR codes only from trusted and known sources. Avoid scanning codes in public places that may have been tampered with. • Check the URL: If you really need to scan a publicly available code, verify that the web address it directed you to is legitimate before taking any action on this website. • Don't share personal information: Avoid entering sensitive information if you're not completely sure of the origin of the QR code. • Protect your digital life: Install a cybersecurity solution with anti-phishing and anti-fraud protection, such as Kaspersky Premium, on all your devices; it will alert you to any danger timely.
The Citizen
02-07-2025
- The Citizen
Beware of these social media scams
'These scams operate in a variety of ways, but they all have a common goal: to obtain users' credentials or install malicious software on their devices.' Most people around the world use social media to stay connected with loved ones, follow brands, and keep up with trends. However, while users scroll, cybercriminals are also busy, always looking for their next target. There has been an increase in scams using social engineering and phishing techniques on social media and messaging apps to steal credentials and distribute malware. Seifallah Jedidi, head of Consumer Channel for Meta at Kaspersky, said that cybercriminals are increasingly exploiting platforms such as WhatsApp, Facebook, Instagram, TikTok, and X (formerly Twitter) to create fake pages that mimic legitimate websites. Fraudulent campaigns on social media He added that they have identified multiple fraudulent campaigns employing sophisticated tactics and widely recognised platforms to execute their attacks. 'These scams operate in a variety of ways, but they all have a common goal: to obtain users' credentials or install malicious software on their devices.' There has been an increase in fake verification pages, which lead individuals to websites that resemble the official interfaces of WhatsApp and other apps. These fraudulent pages request users to provide their phone number and the verification code received via SMS. 'With this information, cyberattackers could access accounts, take full control, and perform actions such as impersonating them, sending messages in the victim's name, or accessing confidential information.' ALSO READ: Think before you click: Safeguarding your digital reputation Promises made on social media At a time when social media users are obsessed with a huge number of followers, cybercriminals often make promises of free followers to boost users' digital popularity – this is typically done on platforms such as Instagram. However, to access this promise, users have to voluntarily enter their login credentials on one of these fraudulent pages. Jedidi said this strategy allows cyberattackers to take control of accounts, use them to spread further scams, or even sell them on dark markets. Fake shops on TikTok He added that there has been an increase in fake shops on TikTok. 'This social network has also been the target of targeted attacks, especially through its TikTok Shop feature, which allows sellers to directly associate products with posted videos, making them easier to purchase.' Taking advantage of this functionality, cybercriminals create fake sites that simulate being part of TikTok Shop, with the aim of stealing sellers' credentials. There has been an increase in fake security notifications, whereby cybercriminals send alerts pretending to be from the security teams of Facebook and similar platforms, warning users of suspicious activity on their accounts. 'Through these notifications, they directed victims to phishing forms requesting their credentials. Once entered, the attackers could take control of personal profiles or manage pages, using them for scams, spreading malicious content, or extortion.' ALSO READ: WhatsApp to get ads: Here's what you need to know Risks associated with social media Jedidi said the real risks associated with using social media include exposure of personal data, loss of control over accounts, dissemination of false information, and threats to privacy. 'Despite the increase in these types of threats, users are not defenceless. With increased awareness, good cybersecurity practices, and the use of reliable protection tools, it is possible to significantly reduce the risk of falling victim to these scams.' He emphasises the importance of maintaining cybersecurity awareness, developing critical thinking skills, and utilising robust cybersecurity solutions when using social media. Tips to reduce risks Do not click on suspicious links, especially those promising unbelievable offers, benefits, or services. These often lead to phishing sites where sensitive information such as passwords or banking details is stolen. Always verify the authenticity of the sender and the content before clicking. Be careful what you share: Information like pet names, important dates, or locations can be used by cyberattackers to guess passwords or design personalised attacks. Avoid sharing travel plans, financial details, or overly personal information. Use strong passwords and two-factor authentication: Choose unique and complex passwords for each social network, combining capital letters, numbers, and symbols. Additionally, consider activating an extra security option that many platforms offer: after entering your password, you will receive a code via phone or email to confirm it's you. This way, even if someone figures out your password, they will not be able to log in. Review your privacy settings: Platforms regularly update their policies and security options. Check who can see your content, tag you, or access your profile. Also, review and revoke permissions for third-party apps you no longer use. NOW READ: Oh hash! Musk bans 'aesthetic nightmare' hashtags from X
Gulf News
18-04-2025
- Gulf News
WhatsApp users in UAE warned of hacking risks: How to secure your account
Dubai: Messaging app users in the UAE are being warned to be vigilant about the security of their WhatsApp accounts as cybercriminals are increasingly targeting the platform for illicit activities, according to a leading cybersecurity expert. Hackers can use compromised accounts for various criminal purposes, including spam distribution and complex scam schemes, said Seifallah Jedidi, Head of Consumer Channel, META, at Kaspersky. Here's how they do it: Cybercriminals employ two primary methods to gain unauthorised access to WhatsApp accounts. One approach involves leveraging the 'Linked devices' feature to add another device to an existing account. In this scenario, the legitimate user may remain unaware that the attacker is also accessing their conversations. The second method involves re-registering the WhatsApp account on the criminal's device, effectively locking the original user out of their account. 'Messengers are a private space, as they often contain personal information about our lives and relationships with family and friends. They can also contain information about work and, in some cases, confidential information,' said Jedidi. 'If you notice any unusual activity, such as receiving replies to messages you didn't send, or if your friends complain about strange messages coming from your account, it's important to protect your privacy immediately,' Jedidi added. To safeguard their WhatsApp accounts from potential hacking, users are advised to implement the following key security measures: Enable two-step verification: Activate this feature in WhatsApp settings (Settings → Account → Two-step verification) and remember the six-digit PIN you create, as it's different from the one-time code. Never share your PIN or one-time codes: Scammers only request these details. Consider using passkeys: WhatsApp recently introduced support for passkeys (Settings → Account → Passkeys). This secure option uses biometric authentication and stores a long cryptographic key instead of PIN codes. However, be mindful of its convenience if you frequently switch devices between Android and iOS. Set up a backup email address: Ensure you have a recovery email linked to your account (Settings → Account → Email address). Strengthen your email security: If you've already added an email address, ensure your email account has a strong, unique password. Consider using a password manager like Kaspersky Password Manager for secure storage. Enable two-factor authentication for your email: This adds an extra layer of security to your email account. Be wary of SIM swap scams: Contact your mobile carrier, preferably in person, to confirm that no unauthorised SIM cards have been issued for your number. Also, check for any suspicious call-forwarding settings. Inquire about additional security measures for your SIM card, such as requiring your physical presence or an extra password for SIM-related actions. Jedidi also said that measures within WhatsApp are most effective when the device is protected from malware. They recommend installing comprehensive security solutions on all devices. By taking these proactive steps, WhatsApp users in the UAE can significantly reduce their risk of falling victim to cybercriminals and ensure the security of their personal and professional communications.
Biz Bahrain
17-04-2025
- Biz Bahrain
Kaspersky sheds light on children's cyber secrets
According to the findings from a recent Kaspersky survey*, among respondents from the UAE, more than half (53%) of children aged 11-17 years old hide their online activities from their parents and other grown-ups. To do this, 29% of youngsters set passwords on all their devices, while 19% clear the browsing history after each access to the Internet so that other family members couldn't check what they were doing online. And 18% prefer going online when their parents are not around. Among those who tend to keep their online activities a secret, a significant number (55%) of teenagers don't want their parents to know how much time they actually spend on the Internet, or which websites they frequent (35%). Even more worryingly, nearly half (40%) conceal information about visiting websites with aggressive or adult content, and 33% about watching content intended for adults. What children prefer their parents don't know about 'It is understandable that parents may not be able to monitor all the online activities of their children. However, it is not necessary to do so. Instead, it is more important to build and maintain close relationships with children. Regularly chatting with them about their experiences, including those related to their digital lives, is essential. Creating a communication strategy that allows them to reach out when they have concerns is also crucial,' comments Seifallah Jedidi, Head of Consumer Channel in the Middle East, Turkiye and Africa at Kaspersky. 'Applying parental control is not showing distrust to your child; it's a sensible precaution with which you can, among other things, protect the device and the data on it. It allows parents to control which sites their children visit and which games they play, as well as disallowing file downloads, blocking access to content on unwanted topics and preventing the disclosure of confidential information'. Kaspersky shares the following tips that can help to protect children's digital experience: • By staying informed about the latest threats and actively monitoring their children's online activities, parents can create a safer online environment for their children. • It's crucial for parents to have open communication with their children about the potential risks they may encounter online and to enforce strict guidelines to ensure their safety. • To secure your child from downloading any malicious files during their online experience, we advise to install a trusted security solution on their device. • With the right tools such as Kaspersky's digital parenting app Safe Kids, parents can effectively safeguard their children against cyber threats in the digital space. *The survey was conducted by Toluna research agency at the request of Kaspersky. The study sample included 10000 online interviews (5000 parent-child pairs, with children aged 3 to 17 years) in 5 countries: Türkiye, South Africa, Egypt, Saudi Arabia, and the UAE.
