In the case of TM pick n Pay the domain registered was www.tmsupermarkets.com and the emails created to impersonate included the finance manager’s email address Raymond Matsetswa Raymondmatsetswa@
Zimbabwean companies should now make it a priority to protect their businesses by registering and buying domains. Cyber criminals in Zimbabwe are now on the lookout for Zimbabwean companies that do not have a domain extension that are protected. With the .com being the most sort after domain. Criminals can buy a .com in a space of 5 minutes clone the organisation and company website so that it looks like the original website and create the emails. The cyber criminal then in turn uses phishing. Phishing is a type of online scam where criminals impersonate legitimate organizations via email, text messages, advertisements or other means in order to steal sensitive information. This is usually done by including a link that will appear to take you to the company’s website to fill in your information, but the website is a clever fake and the information you provide goes straight to the criminal behind the scam.
The intention of the cyber attacker is to trick their victims into making money transfers, or paying invoices to defraud your business. The idea may be to force you to send back sensitive data related to your business or your clients. You innocently click on a hyperlink that will allow the cyber criminal to take over the victim’s computer and/or user credentials to facilitate fraud in what is called a Business Email Compromise (BEC) attack.If you would like to know more on how to protect your organisation from similar scams you can contact us on +263772278161 or email email@example.com or
Engineer Jacob Kudzayi Mutisi