The campaigns use advanced Traffic Distribution Systems to selectively target victims based on their geographic location.
Cyberfraud campaigns, named “Reckless Rabbit” and “Ruthless Rabbit,” have been uncovered using social-engineering tactics to deceive victims into providing sensitive information under the pretence of high-return investment schemes.
According to research from Infoblox and reported by SC US from RSA Conference in San Francisco, victims are typically lured through fake celebrity social media posts that redirect them to fraudulent investment sites.
These scams exploit the trust of users by promising substantial financial rewards in exchange for personal data and facilitating money transfers for the attackers.
The campaigns use advanced Traffic Distribution Systems (TDS) to selectively target victims based on their geographic location and financial viability. When a user clicks on the malicious link, their IP address and other data are analysed. If deemed a “high-value” target, they are guided deeper into the scam process, which might include interactions with fake investment representatives or call centres.
This TDS system also helps the scammers evade security detection by filtering out bot traffic and honeypots. Infoblox said Ruthless Rabbit appears to be linked to infrastructure in Russia and mainly targets Eastern Europe.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
